Debian-LTS has issued an advisory on October 21: https://www.debian.org/lts/security/2020/dla-2410 The issue is fixed upstream in 5.55.
CC: (none) => nicolas.salguero
If there's a fix for Bug 27314, we'd want to include that too.
Assignee: bugsquad => shlomif
SUSE has issued an advisory for this on October 26: https://lists.suse.com/pipermail/sle-security-updates/2020-October/007623.html
openSUSE has issued an advisory for this on November 9: https://lists.opensuse.org/opensuse-security-announce/2020-11/msg00036.html
Suggested advisory: ======================== The updated packages fix a security vulnerability: In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event. (CVE-2020-27153) References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27153 https://www.debian.org/lts/security/2020/dla-2410 https://lists.suse.com/pipermail/sle-security-updates/2020-October/007623.html https://lists.opensuse.org/opensuse-security-announce/2020-11/msg00036.html ======================== Updated packages in core/updates_testing: ======================== bluez-5.54-1.1.mga7 bluez-cups-5.54-1.1.mga7 bluez-hid2hci-5.54-1.1.mga7 lib(64)bluez3-5.54-1.1.mga7 lib(64)bluez-devel-5.54-1.1.mga7 from SRPM: bluez-5.54-1.1.mga7.src.rpm
Status: NEW => ASSIGNEDCVE: (none) => CVE-2020-27153Assignee: shlomif => qa-bugs
Mageia 7 Plasma x86_64 This update installs: bluez-5.54-1.1.mga7 bluez-cups-5.54-1.1.mga7 bluez-hid2hci-5.54-1.1.mga7 lib(64)bluez3-5.54-1.1.mga7 Installation OK. Reboot is fine. Using a Bluetooth Headphone is OK: Unpairing it then Pairing it are OK. Play some music through this device is OK. Pairing smartphone is OK. M7 system plays sounds from my Xiaomi Smartphone while receiving notifications. Audio phone calls through Bluetooth is OK too. MGA7-64-OK Validating this update. Packages and Advisory in Comment 4. Advisory pushed to SVN. (In reply to David Walser from comment #1) > If there's a fix for Bug 27314, we'd want to include that too. Reported upstream for Bluez 5.55. https://github.com/bluez/bluez/issues/51
CC: (none) => ouaurelien, sysadmin-bugsWhiteboard: (none) => MGA7-64-OKKeywords: (none) => advisory, validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2020-0419.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED