Log

AVG-2169 edited at 26 Aug 2021 11:42:54
Status
- Testing
+ Fixed
AVG-2231 edited at 26 Aug 2021 11:37:17
Status
- Vulnerable
+ Fixed
Fixed
+ 5.61-1
CVE-2021-3658 edited at 26 Aug 2021 11:36:52
Description
- bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again. This could lead to inadvertent exposure of the bluetooth stack to physically nearby attackers.
+ bluetoothd from bluez before version 5.61 incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again. This could lead to inadvertent exposure of the bluetooth stack to physically nearby attackers.
AVG-2282 edited at 26 Aug 2021 10:34:36
Status
- Vulnerable
+ Testing
Fixed
+ 5.15.2+kde+r222-1
CVE-2021-38593 edited at 26 Aug 2021 10:34:20
References
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/qt/OSV-2021-903.yaml
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35566
https://github.com/qt/qtbase/commit/6b400e3147dcfd8cc3a393ace1bd118c93762e0c
+ https://invent.kde.org/qt/qt/qtbase/-/commit/fed5713eeba5bf8e0ee413cb4e77109bfa7c2bce
AVG-1741 edited at 26 Aug 2021 10:31:02
Issues
CVE-2020-26555
CVE-2020-26556
CVE-2020-26557
CVE-2020-26559
CVE-2020-26560
CVE-2021-3542
CVE-2021-3640
CVE-2021-3669
+ CVE-2021-3739
CVE-2021-29648
CVE-2021-30178
CVE-2021-31615
AVG-1881 edited at 26 Aug 2021 10:30:54
Issues
CVE-2020-26555
CVE-2020-26556
CVE-2020-26557
CVE-2020-26559
CVE-2020-26560
CVE-2021-3542
CVE-2021-3640
CVE-2021-3669
+ CVE-2021-3739
CVE-2021-31615
AVG-1880 edited at 26 Aug 2021 10:30:46
Issues
CVE-2020-26555
CVE-2020-26556
CVE-2020-26557
CVE-2020-26559
CVE-2020-26560
CVE-2021-3542
CVE-2021-3640
CVE-2021-3669
+ CVE-2021-3739
CVE-2021-31615
CVE-2021-3739 edited at 26 Aug 2021 10:30:31
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ A null pointer dereference bug was discovered in btrfs_rm_device function in fs/btrfs/volumes.c in Linux Kernel, where triggering the bug requires ‘CAP_SYS_ADMIN’.
References
+ https://www.openwall.com/lists/oss-security/2021/08/25/3
+ https://lore.kernel.org/linux-btrfs/CAFcO6XPOB7xPibhbRaUrJ3fJUvH1m=9wVY-yA_Ytj6hXW0cqXA@mail.gmail.com/T/
+ https://lore.kernel.org/linux-btrfs/20210806102415.304717-1-wqu@suse.com/T/
AVG-1879 edited at 26 Aug 2021 09:57:09
Issues
CVE-2020-26555
CVE-2020-26556
CVE-2020-26557
CVE-2020-26559
CVE-2020-26560
CVE-2021-3542
CVE-2021-3640
CVE-2021-3669
+ CVE-2021-3739
CVE-2021-31615
CVE-2021-3739 created at 26 Aug 2021 09:57:09
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes