PublicDateAtUSN: 2018-07-24 Candidate: CVE-2018-10910 PublicDate: 2019-01-28 15:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10910 https://ubuntu.com/security/notices/USN-3856-1 Description: A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth agent is registered with the system. This situation could lead to the unauthorized pairing of certain Bluetooth devices without any form of authentication. Versions before bluez 5.51 are vulnerable. Ubuntu-Description: Notes: mdeslaur> actual bug in bluez, but there is a work-around in gnome-bluetooth mdeslaur> https://gitlab.gnome.org/GNOME/gnome-bluetooth/commit/6b5086d42ea64d46277f3c93b43984f331d12f89 mdeslaur> gnome-bluetooth <=3.26 used synchronous d-bus calls, so the mdeslaur> issue doesn't present itself mdeslaur> the bluez patches add new functionnality that newer versions of mdeslaur> gnome-bluetooth can use to fix this issue. Since the mdeslaur> workaround was applied to gnome-bluetooth, we aren't going to mdeslaur> add these commits to bluez. Marking as ignored. Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1606203 https://bugzilla.redhat.com/show_bug.cgi?id=1602985 Priority: low Discovered-by: Chris Marchesi Assigned-to: CVSS: nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N [3.3 LOW] Patches_bluez: upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=2796d545e82659541333050557d5dbb89a295ae7 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=ee863d9d5dd45b183ba6b0b45455498cd88b8663 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=6324acf2012ec444f67c73a42d3991064a69eec6 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=45969a7a7335eaa47c52b76b9e32c28d680dc031 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=bbf1cd0102a4de658ca596dddb48713124f1fd41 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=d04eb02f9bad8795297210ef80e262be16ea8f07 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=170ff3b81fdd9902c0b41bfd37ea0090cdb22830 upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=9a57d90628224fa6525e4eebf1e97f713918bb3b upstream: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=4f162b557a963cc21f7f1933e9abf3876f283b38 upstream_bluez: released (5.51) precise/esm_bluez: DNE trusty_bluez: ignored (reached end-of-life) trusty/esm_bluez: DNE (trusty was needed) xenial_bluez: ignored esm-infra/xenial_bluez: ignored bionic_bluez: ignored cosmic_bluez: ignored (reached end-of-life) disco_bluez: ignored (reached end-of-life) eoan_bluez: ignored devel_bluez: not-affected (5.52-0ubuntu2) Patches_gnome-bluetooth: upstream_gnome-bluetooth: released (3.28.1) precise/esm_gnome-bluetooth: DNE trusty_gnome-bluetooth: not-affected (3.8.2.1-0ubuntu4.2) trusty/esm_gnome-bluetooth: DNE (trusty was not-affected [3.8.2.1-0ubuntu4.2]) xenial_gnome-bluetooth: not-affected (3.18.2-1ubuntu2) esm-infra/xenial_gnome-bluetooth: not-affected (3.18.2-1ubuntu2) bionic_gnome-bluetooth: released (3.28.0-2ubuntu0.1) cosmic_gnome-bluetooth: not-affected (3.28.2-2) disco_gnome-bluetooth: not-affected (3.28.2-3) eoan_gnome-bluetooth: not-affected (3.28.2-3) devel_gnome-bluetooth: not-affected (3.28.2-3)