Ubuntu has issued an advisory on November 23: https://ubuntu.com/security/notices/USN-5155-1 The issues are fixed upstream in 5.62.
Status comment: (none) => Fixed upstream in 5.62CC: (none) => nicolas.salguero
Suggested advisory: ======================== The updated packages fix security vulnerabilities: BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This will cause a memory leak over time. The data can be a very large object, which can be caused by an attacker continuously sending sdp packets and this may cause the service of the target device to crash. (CVE-2021-41229) An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call. (CVE-2021-43400) References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41229 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43400 https://ubuntu.com/security/notices/USN-5155-1 ======================== Updated packages in core/updates_testing: ======================== bluez-5.55-3.3.mga8 bluez-cups-5.55-3.3.mga8 bluez-hid2hci-5.55-3.3.mga8 bluez-mesh-5.55-3.3.mga8 lib(64)bluez3-5.55-3.3.mga8 lib(64)bluez-devel-5.55-3.3.mga8 from SRPM: bluez-5.55-3.3.mga8.src.rpm
CVE: (none) => CVE-2021-41229, CVE-2021-43400Assignee: bugsquad => qa-bugsStatus: NEW => ASSIGNEDStatus comment: Fixed upstream in 5.62 => (none)
mga8, x64 BlueZ stack installed - USB BT audio device working. Added an HP Officejet 100 mobile printer and printed A5 and A4 test pages via CUPS. Updated the six packages using qarepo and MageiaUpdate. rfkill prompt came up immediately - all it needed was the root password. BT audio speaker connected immediately. Printed an ODT document from LibreOffice on the bluetooth printer without any reconfiguration. Sample of applications requiring lib64bluez3: anyremote ardour blueman guitarix gypsy kodi blueman was used originally to add the BT widget in the Mate panel and manage bluetooth services. None of the others is installed. Installed ardour without any idea what it was. Ran a trace on ardour6 and opened an empty project in the vain hope that some bluetooth plugin might register but there was nothing. However, bluetooth continues to work, with no regressions.
CC: (none) => tarazed25Whiteboard: (none) => MGA8-64-OK
Validating. Advisory in Comment 1.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0532.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED