OESF Portal | OESF Forum | OESF Wiki | LinuxPDA | #planetgemini chat on matrix.org | #gemini-pda chat on Freenode | #zaurus and #alarmz chat on Freenode | ELSI (coming soon) | Ibiblio

IPB

Welcome Guest ( Log In | Register )

 
Reply to this topicStart new topic
> BlueFrag patch?, There's a critical RCE vuln in Android, patched in February
adfh
post Feb 13 2020, 03:39 AM
Post #1





Group: Members
Posts: 19
Joined: 11-December 19
From: I come from a land down under
Member No.: 861,112



“BlueFrag” (CVE-2020-0022) is a bug with Android’s l2cap implementation. It affects all Android 8 and 9 devices with Bluetooth enabled, allowing for remote crashing and arbitrary code execution. It’s been assigned a Critical severity in the February Android Security Bulletin (A-143894715).

https://www.engadget.com/2020/02/09/android...-security-flaw/
https://insinuator.net/2020/02/critical-blu...-cve-2020-0022/
https://source.android.com/security/bulletin/2020-02-01.html

It looks that unlike a lot of other bugs that seem to be chipset specific, the issue lies with an Android component, so the Cosmo is likely affected. Has anyone heard if there's going to be a patch for this? Otherwise.. I reckon a good idea to turn off bluetooth in crowded areas unless you need it.
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



RSS Lo-Fi Version Time is now: 22nd February 2020 - 02:19 AM