UbuntuUpdates.org

Package "bluez"

Name: bluez

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Bluetooth support (metapackage)
  • Analyses Bluetooth HCI packets
  • bluetooth mesh daemon
  • BlueZ test tools and scripts

Latest version: 5.64-0ubuntu1.3
Release: jammy (22.04)
Level: security
Repository: universe

Links



Other versions of "bluez" in Jammy

Repository Area Version
base main 5.64-0ubuntu1
base universe 5.64-0ubuntu1
security main 5.64-0ubuntu1.3
updates main 5.64-0ubuntu1.3
updates universe 5.64-0ubuntu1.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.64-0ubuntu1.3 2024-06-05 21:07:14 UTC

  bluez (5.64-0ubuntu1.3) jammy-security; urgency=medium

  * SECURITY UPDATE: null pointer dereference
    - debian/patches/CVE-2022-3563.patch: Fix null dereference in
      mgmt-tester.c.
    - CVE-2022-3563
  * SECURITY UPDATE: out-of-bounds write
    - debian/patches/CVE-2023-27349.patch: Fix crash while handling
      unsupported events in avrcp.c.
    - CVE-2023-27349

 -- Fabian Toepfer <email address hidden> Wed, 05 Jun 2024 12:10:29 +0200

Source diff to previous version
CVE-2022-3563 A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function read_50_controller_cap_complete of the file tools/
CVE-2023-27349 BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attacker

Version: 5.64-0ubuntu1.1 2023-12-07 04:06:56 UTC

  bluez (5.64-0ubuntu1.1) jammy-security; urgency=medium

  * SECURITY UPDATE: make conf compliant to HID specification
    - debian/patches/CVE-2023-45866.patch: input.conf: Change default of
      ClassicBondedOnly
    - CVE-2023-45866

 -- Nishit Majithia <email address hidden> Wed, 29 Nov 2023 17:01:28 +0530




About   -   Send Feedback to @ubuntu_updates