|
|
>> Mandriva Security Update Fixes BlueZ Connection Authentication Bypass Vulnerability
|
Title : Mandriva Security Update Fixes BlueZ Connection Authentication Bypass Vulnerability
VUPEN ID : VUPEN/ADV-2007-0202
CVE ID : CVE-2006-6899
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-01-16
|
Mandriva has released security updates to address a vulnerability identified in BlueZ. This issue could be exploited by remote attackers to gain unauthorized access to a vulnerable device. For additional information, see : VUPEN/ADV-2007-0200
Affected Products
Mandriva Linux 2006.0
Solution
Upgrade the affected packages :
Mandriva Linux 2006.0:
3e4cef35413fb07be1bf17be76e82ab0 2006.0/i586/bluez-utils-2.19-7.1.20060mdk.i586.rpm
71fe8899bacb7cf75482f3deced101c4 2006.0/i586/bluez-utils-cups-2.19-7.1.20060mdk.i586.rpm
4d4e9c474520e55710458666c1624c24 2006.0/SRPMS/bluez-utils-2.19-7.1.20060mdk.src.rpm
Mandriva Linux 2006.0/X86_64:
cf217ff41df2f2abd65b86c12c15177a 2006.0/x86_64/bluez-utils-2.19-7.1.20060mdk.x86_64.rpm
26b6a142c00e22cb4fcb737f724b0bc1 2006.0/x86_64/bluez-utils-cups-2.19-7.1.20060mdk.x86_64.rpm
4d4e9c474520e55710458666c1624c24 2006.0/SRPMS/bluez-utils-2.19-7.1.20060mdk.src.rpm
References
http://www.vupen.com/english/advisories/2007/0202
http://archives.mandrivalinux.com/security-announce/2007-01/msg00023.php
ChangeLog
2007-01-16 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
