[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 3820-1] bluez security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3820-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/              Arturo Borrero Gonzalez
May 25, 2024                                  https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : bluez
Version        : 5.50-1.2~deb10u5
CVE ID         : CVE-2023-27349

An problem has been fixed with the handling of the AVRCP protocol in the bluetooth
stack that could lead to remote code execution.

For Debian 10 buster, this problem has been fixed in version
5.50-1.2~deb10u5.

We recommend that you upgrade your bluez packages.

For the detailed security status of bluez please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/bluez

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=W0T9
-----END PGP SIGNATURE-----


Reply to: