[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2021-0281":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":43,"epss":9,"epss_history":44,"metrics":45,"affected":46},"MGASA-2021-0281","Updated bluez packages fix security vulnerability\n\nBluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 \nthrough 5.2 may permit a nearby man-in-the-middle attacker to identify the \nPasskey used during pairing (in the Passkey authentication procedure) by \nreflection of the public key and the authentication evidence of the initiating\ndevice, potentially permitting this attacker to complete authenticated pairing\nwith the responding device using the correct Passkey for the pairing session.\nThe attack methodology determines the Passkey value one bit at a time \n(CVE-2020-26558).\n\nThe cli_feat_read_cb() function in src/gatt-database.c does not perform bounds\nchecks on the 'offset' variable before using it as an index into an array for\nreading (CVE-2021-3588).\n",null,[],[],[],[14,16],{"_key":15},"CVE-2020-26558",{"_key":17},"CVE-2021-3588",[],[],[21,22],{"_key":15},{"_key":17},"2021-06-23T17:11:28Z","2026-04-16T04:24:52.069386Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,34,39],{"url":29,"sources":30,"tags":32},"https://advisories.mageia.org/MGASA-2021-0281.html",[31],"osv_mageia",[33],"Advisory",{"url":35,"sources":36,"tags":37},"https://bugs.mageia.org/show_bug.cgi?id=29140",[31],[38],"REPORT",{"url":40,"sources":41,"tags":42},"https://ubuntu.com/security/notices/USN-4989-1",[31],[38,33],[],[],[],[47,59],{"ecosystem":48,"name":49,"vendor":50,"product":49,"cpe_part":9,"purl_type":51,"purl_namespace":50,"purl_name":49,"source":9,"versions":52},"Mageia","bluez","mageia","rpm",[53],{"version":54,"is_range":55,"range_type":56,"version_start":9,"version_start_type":9,"version_end":57,"version_end_type":58,"fixed_in":9},"lt5_54_1_2_mga7",true,"ecosystem","5.54-1.2.mga7","excluding",{"ecosystem":48,"name":49,"vendor":50,"product":49,"cpe_part":9,"purl_type":51,"purl_namespace":50,"purl_name":49,"source":9,"versions":60},[61],{"version":62,"is_range":55,"range_type":56,"version_start":9,"version_start_type":9,"version_end":63,"version_end_type":58,"fixed_in":9},"lt5_55_3_1_mga8","5.55-3.1.mga8"]