blob: 4a86b8c4fa08eb3f9ea211e88298e9a11a57507e (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
Description: predictable Authvalue in Bluetooth Mesh Provisioning Leads to MITM
References:
https://kb.cert.org/vuls/id/799380
https://www.bluetooth.com/learn-about-bluetooth/key-attributes/bluetooth-security/predicatable-authvalue/
https://bugzilla.redhat.com/show_bug.cgi?id=1960009
Notes:
bwh> Mesh provisioning seems to be handled in user-space.
Bugs:
upstream: N/A "Not implemented in kernel"
5.10-upstream-stable: N/A "Not implemented in kernel"
4.19-upstream-stable: N/A "Not implemented in kernel"
4.9-upstream-stable: N/A "Not implemented in kernel"
sid: N/A "Not implemented in kernel"
5.10-bullseye-security: N/A "Not implemented in kernel"
4.19-buster-security: N/A "Not implemented in kernel"
4.9-stretch-security: N/A "Not implemented in kernel"
|