bluez-utils: Bluetooth device name validation vulnerability — GLSA 200508-09

Improper validation of Bluetooth device names can lead to arbitrary command execution.

Affected Packages

net-wireless/bluez-utils on all architectures
Affected versions < 2.19
Unaffected versions >= 2.19

Background

bluez-utils are the utilities for use with the BlueZ implementation of the Bluetooth wireless standards for Linux.

Description

The name of a Bluetooth device is improperly validated by the hcid utility when a remote device attempts to pair itself with a computer.

Impact

An attacker could create a malicious device name on a Bluetooth device resulting in arbitrary commands being executed as root upon attempting to pair the device with the computer.

Workaround

There are no known workarounds at this time.

Resolution

All bluez-utils users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-wireless/bluez-utils-2.19"

References

Release Date
August 17, 2005

Latest Revision
August 17, 2005: 01

Severity
high

Exploitable
remote

Bugzilla entries