bluez - Arch Linux
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1116 | 5.53-1 | 5.54-1 | High | Fixed | |
| AVG-396 | 5.46-1 | 5.46-2 | High | Fixed | FS#55603 |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-0556 | AVG-1116 | High | Yes | Access restriction bypass | It was discovered that the HID and HOGP profiles implementations in bluez before 5.54 don't specifically require bonding between the device and the host.... |
| CVE-2017-1000250 | AVG-396 | High | Yes | Information disclosure | An information-disclosure flaw was found in the bluetoothd implementation of the Service Discovery Protocol (SDP). A specially crafted Bluetooth device... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 19 Mar 2020 | ASA-202003-13 | AVG-1116 | High | access restriction bypass |
| 12 Sep 2017 | ASA-201709-3 | AVG-396 | High | information disclosure |