bluez: fix CVE-2021-0129 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Marta Rybczynska <rybczynska@gmail.com>	2021-12-14 10:50:27 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-12-30 16:59:16 +0000
commit	30231b235487973f4e6b1921b428d938ec20bec8 (patch)
tree	8bd2fcf0e342aa3780cae168f56203c56686e14b /scripts/lib/scriptutils.py
parent	795339092f87672e4f68e4d3bc4cfd0e252d1831 (diff)
download	poky-30231b235487973f4e6b1921b428d938ec20bec8.tar.gz

bluez: fix CVE-2021-0129

Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access. This issue can be fixed in the kernel, in BlueZ or both. This patch fixes it on the BlueZ side, so that the configuration no longer depends on the kernel fix. https://nvd.nist.gov/vuln/detail/CVE-2021-012 (From OE-Core rev: 573ff24c5ba7836b4dd7f95b6e7c7244b80f9d00) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/scriptutils.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: