MGASA-2020-0419

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2020-27153

Published: 13 Nov 2020, 21:20

Last modified:16 Apr 2026, 04:25

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

13 Nov 2020, 21:20

Published

Vulnerability first disclosed

16 Apr 2026, 04:25

Last Modified

Vulnerability information updated

Description

Updated bluez packages fix a security vulnerability In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event. (CVE-2020-27153)

Affected Systems

mageia•bluez
< 5.54-1.1.mga7

References (5)

https://advisories.mageia.org/MGASA-2020-0419.html
https://bugs.mageia.org/show_bug.cgi?id=27486
https://www.debian.org/lts/security/2020/dla-2410
https://lists.suse.com/pipermail/sle-security-updates/2020-October/007623.html
https://lists.opensuse.org/opensuse-security-announce/2020-11/msg00036.html