StarlingX

[Debian] High CVE: CVE-2023-45866 bluez: permit an unauthenticated Peripheral role

Bug #2047185 reported by Yue Tao
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
StarlingX
Fix Released
High
Zhixiong Chi

Bug Description

CVE-2023-45866: https://nvd.nist.gov/vuln/detail/CVE-2023-45866

Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. An example affected package is bluez 5.64-0ubuntu1 in Ubuntu 22.04LTS. NOTE: in some cases, a CVE-2020-0556 mitigation would have already addressed this Bluetooth HID Hosts issue.

Base Score: High

Reference:

['libbluetooth3_5.55-3.1_amd64.deb===>libbluetooth3_5.55-3.1+deb11u1_amd64.deb']
https://www.debian.org/security/2023/dsa-5584

CVE References

Yue Tao (wrytao)
summary: - [Debian] High CVE: CVE-2023-45866 bluez
+ [Debian] High CVE: CVE-2023-45866 bluez: permit an unauthenticated
+ Peripheral role
Zhixiong Chi (zhixiongchi)
Changed in starlingx:
assignee: nobody → Zhixiong Chi (zhixiongchi)
status: Triaged → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to tools (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/starlingx/tools/+/904419

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/904419
Committed: https://opendev.org/starlingx/tools/commit/18969517c986adc7aab2156d067184f56dc788e9
Submitter: "Zuul (22348)"
Branch: master

commit 18969517c986adc7aab2156d067184f56dc788e9
Author: Zhixiong Chi <email address hidden>
Date: Thu Dec 21 21:53:37 2023 -0800

    libbluetooth3: Upgrade to 5.55-3.1+deb11u1

    Upgrade subpackages libbluetooth3 and libbluetooth-dev to
    5.55-3.1+deb11u1 to fix the CVE issue CVE-2023-45866.
    Add libbluetooth-dev since it's the dependency of python3.9.

    Refer to:
    https://www.debian.org/security/2023/dsa-5584
    https://security-tracker.debian.org/tracker/CVE-2023-45866

    TestPlan:
    PASS: downloader; build-pkgs -c; build-image
    PASS: Jenkins Installation

    Closes-Bug: 2047185

    Signed-off-by: Zhixiong Chi <email address hidden>
    Change-Id: Id4175c0ef5791dbc02fa546a6b0a21a64cfec711

Changed in starlingx:
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.