[Git][security-tracker-team/security-tracker][master] Update notes for CVE-2023-45866/bluez
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 10 16:16:07 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fef5975a by Salvatore Bonaccorso at 2023-12-10T17:15:30+01:00
Update notes for CVE-2023-45866/bluez
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -230,6 +230,8 @@ CVE-2023-32460 (Dell PowerEdge BIOS contains an improper privilege management se
CVE-2023-45866 (Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral ...)
- bluez <unfixed>
NOTE: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=25a471a83e02e1effb15d5a488b3f0085eaeb675
+ NOTE: The fix for CVE-2020-0556 allows to set manually the "ClassicBondedOnly"
+ NOTE: configuration options but defaulted to false.
CVE-2023-6588 (Offline mode is always enabled, even if permission disallows it, in D ...)
NOT-FOR-US: Devolutions Server
CVE-2023-6575 (A vulnerability was found in Beijing Baichuo S210 up to 20231121. It h ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fef5975a7c1fdb10e5abf88a967865e8bb8804e3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fef5975a7c1fdb10e5abf88a967865e8bb8804e3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231210/b7e27c97/attachment.htm>
More information about the debian-security-tracker-commits
mailing list