[Git][security-tracker-team/security-tracker][master] Try to clarify notes for CVE-2020-0556

Salvatore Bonaccorso Sun, 15 Mar 2020 06:19:27 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
b6fb0e1c by Salvatore Bonaccorso at 2020-03-15T14:18:14+01:00
Try to clarify notes for CVE-2020-0556

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26468,9 +26468,9 @@ CVE-2020-0556 (Improper access control in subsystem for 
BlueZ before version 5.5
        NOTE: 
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=8cdbd3b09f29da29374e2f83369df24228da0ad1
        NOTE: 
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=3cccdbab2324086588df4ccf5f892fb3ce1f1787
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00352.html
-       NOTE: Patset introduces new configuration option "ClassicBondedOnly" 
which defaults
+       NOTE: Second commit introduces new configuration option 
"ClassicBondedOnly" which defaults
        NOTE: to false, and allows to make sure that input connections only 
come from bonded
-       NOTE: device connections.
+       NOTE: device connections (additional hardening).
 CVE-2020-0555
        RESERVED
 CVE-2020-0554



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b6fb0e1c3a33e1bcd1ea2c241b6ebee6d76cd5e9

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b6fb0e1c3a33e1bcd1ea2c241b6ebee6d76cd5e9
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Try to clarify notes for CVE-2020-0556

Reply via email to