[Git][security-tracker-team/security-tracker][master] Add CVE-2018-10910/bluez
Salvatore Bonaccorso
carnil at debian.org
Mon Jul 23 07:29:49 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
172c5dc4 by Salvatore Bonaccorso at 2018-07-23T08:29:27+02:00
Add CVE-2018-10910/bluez
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -8982,8 +8982,14 @@ CVE-2018-10912
RESERVED
CVE-2018-10911
RESERVED
-CVE-2018-10910
- RESERVED
+CVE-2018-10910 [ailure in disabling Bluetooth discoverability in certain cases may lead to the unauthorized pairing of Bluetooth devices]
+ RESERVED
+ - bluez <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1606203
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1602985
+ NOTE: Bug in src:bluez itself and would need fixing there, but it is workaroundable in
+ NOTE: gnome-bluetooth: https://gitlab.gnome.org/GNOME/gnome-bluetooth/commit/6b5086d42ea64d46277f3c93b43984f331d12f89
+ TODO: check, might not be a problem with Gnome <= 3.26, i.e. no-dsa for those suites
CVE-2018-10909
RESERVED
CVE-2018-10908
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/172c5dc499805c722084bd209c894634ff7b4fb8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/172c5dc499805c722084bd209c894634ff7b4fb8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180723/509c9d56/attachment.html>
More information about the debian-security-tracker-commits
mailing list