ALSA-2024:11154

[ALSA-2024:11154] Moderate: bluez security update

Type:

security

Severity:

moderate

Release date:

2024-12-18

Description:

The bluez packages contain the following utilities for use in Bluetooth applications: hcitool, hciattach, hciconfig, bluetoothd, l2ping, start scripts (AlmaLinux), and pcmcia configuration files.   

Security Fix(es):  

  * bluez: unauthorized HID device connections allows keystroke injection and arbitrary commands execution (CVE-2023-45866)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	bluez-libs-devel-5.63-3.el8_10.alma.1.aarch64.rpm	10dc3a1d2e47b3aa419e3352a33cd76dff2461f72726180ef460aed3de3dda21
aarch64	bluez-libs-5.63-3.el8_10.alma.1.aarch64.rpm	30858ef6bf0a484482be84a42f5b1bfe20bf75afb534f99a1c148dd6b2fca18d
aarch64	bluez-cups-5.63-3.el8_10.alma.1.aarch64.rpm	7275a576255980ec792e9d85d534b9333a2b1fccec2a0906cf181a7e81f0e0e0
aarch64	bluez-hid2hci-5.63-3.el8_10.alma.1.aarch64.rpm	7f59b62cabb0552bb670d7329d5fac43923c124ebe791beec060330510c66834
aarch64	bluez-obexd-5.63-3.el8_10.alma.1.aarch64.rpm	93069e06dc7e42d064f94c9b4715b73c2650877d970663d46fbd4df0d2bcfbd7
aarch64	bluez-5.63-3.el8_10.alma.1.aarch64.rpm	9a0f3bd44166937cd7276c25ade50efe3f6fcb92ecb973ffac4941ed60feff41
i686	bluez-libs-5.63-3.el8_10.alma.1.i686.rpm	c533428f884323eb446b8facde5c327161e7a531a8c73f74ae12aab7b31936d9
i686	bluez-libs-devel-5.63-3.el8_10.alma.1.i686.rpm	e9444b903bd855ebe8febabfd57d4c82b35e5f481c2b979c2b58c4d4ef6fb807
ppc64le	bluez-libs-devel-5.63-3.el8_10.alma.1.ppc64le.rpm	1d42c9b97ccc6852a9f6b173c50d2414d149ced52d164bf7ab6bad8073f1ba04
ppc64le	bluez-libs-5.63-3.el8_10.alma.1.ppc64le.rpm	4de3a0a8d69264a7cbbdc628ce1c403e87732a896c797a7f1efb477bc3ec70f9
ppc64le	bluez-hid2hci-5.63-3.el8_10.alma.1.ppc64le.rpm	58690e286322bd6d818808ffbc2c842cb36a411078a984e83501afc7a87d6926
ppc64le	bluez-5.63-3.el8_10.alma.1.ppc64le.rpm	912af58afb161d14464621d8773a56bc71c84b41959885160be55f42e2dd1f2e
ppc64le	bluez-obexd-5.63-3.el8_10.alma.1.ppc64le.rpm	ab5a2bc1c0f93bcf8cf11d72dbcc3cc4e14ae7abaf01cf318b06f4aa33516de8
ppc64le	bluez-cups-5.63-3.el8_10.alma.1.ppc64le.rpm	ec2056b405202fde4a53efd723d30a441dcd5cdfe48c6629639aff21895501f8
s390x	bluez-libs-devel-5.63-3.el8_10.alma.1.s390x.rpm	14e3f973993831e649e8084e94cf57be424cd78d6a9fdda757f0ce3fdbbeed3f
s390x	bluez-obexd-5.63-3.el8_10.alma.1.s390x.rpm	2ed1f87e8c74b7e3dad44238e21f535c226445d0377bd89a553938daf5ffdebf
s390x	bluez-hid2hci-5.63-3.el8_10.alma.1.s390x.rpm	56ff49a45ce274031095e0fd180721cfbd4d0b1e79931c3c068e08369b58a354
s390x	bluez-cups-5.63-3.el8_10.alma.1.s390x.rpm	61313b159a56fa632228f05796a3bc74a06e44e456d856ab177d60a4e74c888f
s390x	bluez-5.63-3.el8_10.alma.1.s390x.rpm	7da25810acd2e317e10a956a7551eb77266836468f33bee6f579dc1b34dd7e40
s390x	bluez-libs-5.63-3.el8_10.alma.1.s390x.rpm	d595594c91d8179db1b4e276766281a76339c79eda8060e3ac7dcd9329500741
x86_64	bluez-5.63-3.el8_10.alma.1.x86_64.rpm	5f38c3e24b4fc5c0a7270034a6284080ce63cbaf377a4549f5657bfa365c15f8
x86_64	bluez-obexd-5.63-3.el8_10.alma.1.x86_64.rpm	7ba98571359e7a7ec88d5e239e0c11c1ca150d5ac821a029fc4db33775b31279
x86_64	bluez-libs-devel-5.63-3.el8_10.alma.1.x86_64.rpm	8882629301a20c9ce83a5d8ca01545ca8ffc0b4e6e1f9b3a1d2eca5307a60dc7
x86_64	bluez-hid2hci-5.63-3.el8_10.alma.1.x86_64.rpm	988b90f898fef4cd20f385f34f3ec9c938271263ee6959e5f66b7d9ef41feb89
x86_64	bluez-cups-5.63-3.el8_10.alma.1.x86_64.rpm	b055d0205cb11d7c4f34e3cf76ff4c98f31978b070f8d61f98f47480fab53b1e
x86_64	bluez-libs-5.63-3.el8_10.alma.1.x86_64.rpm	c68a107b6290516ff892a37b419cc16e80f668cf76a32ab5c016f30c571855c9

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.