wok view bluez/stuff/CVE-2023-45866.patch @ rev 25628

Patch bluez CVE-2023-45866
author Stanislas Leduc <shann@slitaz.org>
date Sun Dec 17 20:37:36 2023 +0000 (7 months ago)
parents
children
line source
1 From 25a471a83e02e1effb15d5a488b3f0085eaeb675 Mon Sep 17 00:00:00 2001
2 From: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>
3 Date: Tue, 10 Oct 2023 13:03:12 -0700
4 Subject: input.conf: Change default of ClassicBondedOnly
5
6 This changes the default of ClassicBondedOnly since defaulting to false
7 is not inline with HID specification which mandates the of Security Mode
8 4:
9
10 BLUETOOTH SPECIFICATION Page 84 of 123
11 Human Interface Device (HID) Profile:
12
13 5.4.3.4.2 Security Modes
14 Bluetooth HID Hosts shall use Security Mode 4 when interoperating with
15 Bluetooth HID devices that are compliant to the Bluetooth Core
16 Specification v2.1+EDR[6].
17 ---
18 profiles/input/device.c | 2 +-
19 profiles/input/input.conf | 2 +-
20 2 files changed, 2 insertions(+), 2 deletions(-)
21
22 (limited to 'profiles/input')
23
24 diff --git a/profiles/input/device.c b/profiles/input/device.c
25 index 4a50ea9921..4310dd192e 100644
26 --- a/profiles/input/device.c
27 +++ b/profiles/input/device.c
28 @@ -81,7 +81,7 @@ struct input_device {
29
30 static int idle_timeout = 0;
31 static bool uhid_enabled = false;
32 -static bool classic_bonded_only = false;
33 +static bool classic_bonded_only = true;
34
35 void input_set_idle_timeout(int timeout)
36 {
37 diff --git a/profiles/input/input.conf b/profiles/input/input.conf
38 index 4c70bc561f..d8645f3dd6 100644
39 --- a/profiles/input/input.conf
40 +++ b/profiles/input/input.conf
41 @@ -17,7 +17,7 @@
42 # platforms may want to make sure that input connections only come from bonded
43 # device connections. Several older mice have been known for not supporting
44 # pairing/encryption.
45 -# Defaults to false to maximize device compatibility.
46 +# Defaults to true for security.
47 #ClassicBondedOnly=true
48
49 # LE upgrade security
50 --
51 cgit 1.2.3-korg
52