user/bluez: CVE-2020-0556: HID and HOGP profiles don't require bonding
Bugzilla ID | 246 |
Alias(es) | CVE-2020-0556 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-03-18 14:44:50 -0500 |
Modified | 2020-06-17 17:14:19 -0500 |
Status | RESOLVED FIXED |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
URL | https://nvd.nist.gov/vuln/detail/CVE-2020-0556 |
Description
Improper access control in subsystem for BlueZ before version 5.54 may
allow an unauthenticated user to potentially enable escalation of
privilege and denial of service via adjacent access