Mandriva: Updated bluez/bluez-utils packages fix SDP packet parsing vulnerability

Tags

Special Forums Cybersecurity Security Advisories (RSS) Mandriva: Updated bluez/bluez-utils packages fix SDP packet parsing vulnerability

07-15-2008

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

Mandriva: Updated bluez/bluez-utils packages fix SDP packet parsing vulnerability

LinuxSecurity.com: An input validation flaw was found in the Bluetooth Session Description Protocol (SDP) packet parser used in the Bluez bluetooth utilities. A bluetooth device with an already-trusted relationship, or a local user registering a service record via a UNIX socket or D-Bus interface, could cause a crash and potentially execute arbitrary code with the privileges of the hcid daemon (CVE-2008-2374). The updated packages have been patched to correct this issue.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

Previous Thread | Next Thread

LEARN ABOUT DEBIAN

bt-input

bt-input(1)							    bluez-tools 						       bt-input(1)

NAME

       bt-input - a bluetooth input manager

SYNOPSIS

       bt-input [OPTION...]

       Help Options:
	 -h, --help

       Application Options:
	 -a, --adapter=<name|mac>
	 -c, --connect=<name|mac>
	 -d, --disconnect=<name|mac>

DESCRIPTION

       This utility is used to manage outgoing input (HID) service connections.

OPTIONS

       -h, --help
	   Show help

       -a, --adapter <name|mac>
	   Specify adapter to use by his Name or MAC address
	   (if this option does not defined - default adapter used)

       -c, --connect <name|mac>
	   Connect to the input device

       -d, --disconnect <name|mac>
	   Disconnect from the input device

AUTHOR

       Alexander Orlenko <zxteam@gmail.com>.

SEE ALSO

       bt-adapter(1) bt-agent(1) bt-audio(1) bt-device(1) bt-monitor(1) bt-network(1) bt-serial(1)

								    2010-08-11							       bt-input(1)