Package: bluez-utils Version: 3.36-2 Severity: serious Justification: blocker for #503532 (CVE-2008-4311) and far-fetched security hole Tags: fixed-upstream User: pkg-utopia-maintain...@lists.alioth.debian.org Usertags: CVE-2008-4311
bluez-utils installs a D-Bus system policy file intending to allow users at the console to send BlueZ messages to hcid. However, it actually allows users at the console to send messages to the object path '/' on any service, slightly subverting access control for those other services. Furthermore, it might be insufficient to allow everything that hcid intends to allow; messages used to be allowed accidentally by a dbus-daemon bug, but with the dbus-daemon changes targeted for lenny, they will be denied unless explicitly allowed. <http://git.kernel.org/?p=bluetooth/bluez.git;a=history;f=src/bluetooth.conf;h=c0476237;hb=fb333f1c> shows the recent history of this file - the latest version, <http://git.kernel.org/?p=bluetooth/bluez.git;a=blob;f=src/bluetooth.conf;hb=06637b08>, appears to be appropriate. Regards from the Cambridge BSP, Simon
signature.asc
Description: Digital signature
