Peppermint OS Community Forum

General => General Discussion => Topic started by: cavy on September 13, 2017, 12:52:43 pm

Title: Linux gets blasted by BlueBorne too
Post by: cavy on September 13, 2017, 12:52:43 pm
I've always turned off my bluetooth, as I view it, as another potential weak link in the cyber harvesting, ditto with wifi, and try to keep its usage to a minimum.   ;)

http://www.zdnet.com/article/linux-gets-blasted-by-blueborne-too/ This sounds nasty, it seems you can be infected through a domino effect attacking the linux kernel.  :(

Quote
By Steven J. Vaughan-Nichols for Linux and Open Source | September 12, 2017 -- 16:41 GMT (17:41 BST) | Topic: Security Authors of the article
Linux kernels with stack protection enabled (CONFIG_CC_STACKPROTECTOR=y) should catch attempts to exploit this issue.

Should I still be concerned or have the preventive measures been done...?    ;D
 
Title: Re: Linux gets blasted by BlueBorne too
Post by: scifidude79 on September 13, 2017, 01:02:32 pm
The only good thing is that Linux is likely to have a quicker fix for this than the proprietary operating systems.  I'm sure people around the world are already working on it.
Title: Re: Linux gets blasted by BlueBorne too
Post by: cavy on September 13, 2017, 01:11:05 pm
I hope so, usually by the time we hear (worry) about it, the fix has or is in the process of being done.  8)
Title: Re: Linux gets blasted by BlueBorne too
Post by: PCNetSpec on September 13, 2017, 03:51:51 pm
Already patched upstream before you posted ;)
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-1000250.html

Patched versions below (which you should already have received via an update):-

Peppermint 7 & 8
bluez                    5.37-0ubuntu5.1
bluez-obexd       5.37-0ubuntu5.1
bluetooth            5.37-0ubuntu5.1
libbluetooth3    5.37-0ubuntu5.1

Peppermint 6
bluez                    4.101-0ubuntu13.3
bluez-obexd       4.101-0ubuntu13.3
bluetooth            4.101-0ubuntu13.3
libbluetooth3    4.101-0ubuntu13.3
Title: Re: Linux gets blasted by BlueBorne too
Post by: scifidude79 on September 14, 2017, 11:03:27 am
Already patched upstream before you posted ;)
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-1000250.html

Patched versions below (which you should already have received via an update):-

Peppermint 7 & 8
bluez                    5.37-0ubuntu5.1
bluez-obexd       5.37-0ubuntu5.1
bluetooth            5.37-0ubuntu5.1
libbluetooth3    5.37-0ubuntu5.1

Peppermint 6
bluez                    4.101-0ubuntu13.3
bluez-obexd       4.101-0ubuntu13.3
bluetooth            4.101-0ubuntu13.3
libbluetooth3    4.101-0ubuntu13.3

Yep, that's Linux for you.  And I'll bet Microsoft has yet to even acknowledge that there's a problem.  Give them 5-6 months to actually patch it.  ::)
Title: Re: Linux gets blasted by BlueBorne too
Post by: cavy on September 14, 2017, 05:12:58 pm
Cheers   :D

Linux 1 M$ 0    ;)