Back to bug 1960009
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2021-05-12 19:11:46 UTC | CC | security-response-team | |
| Rohit Keshri | 2021-05-12 19:43:52 UTC | CC | rkeshri | |
| RaTasha Tillery-Smith | 2021-05-13 17:45:05 UTC | Doc Text | A flaw was found in the Linux kernel’s Bluetooth Mesh Profile implementation. The Mesh Provisioning procedure has a vulnerability that allows an attacker observing or taking part in the provisioning to brute force the AuthValue if it has a fixed value or is selected predictably or with low entropy. If successful, an attacker can identify the AuthValue and authenticate to both the Provisioner and provisioned devices, allowing a Man-in-the-Middle (MITM) attack on a future provisioning attempt with the same AuthValue. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. | |
| Rohit Keshri | 2021-05-16 18:03:32 UTC | CC | wmealing | |
| Flags | needinfo?(wmealing) | |||
| Wade Mealing | 2021-05-18 04:36:16 UTC | Flags | needinfo?(wmealing) | |
| Florencio Cano | 2021-05-24 09:51:40 UTC | CC | bdettelb, tomckay | |
| Rohit Keshri | 2021-05-26 13:05:58 UTC | Deadline | 2021-05-24 | |
| Rohit Keshri | 2021-05-26 13:07:50 UTC | Group | security, qe_staff | |
| CC | adscvr, airlied, alciregi, bskeggs, hdegoede, jarodwilson, jeremy, jforbes, jglisse, jonathan, josef, jwboyer, kernel-maint, kernel-mgr, linville, masami256, mchehab, steved | |||
| Deadline | 2021-05-24 | |||
| Summary | EMBARGOED CVE-2020-26557 kernel: predictable Authvalue in Bluetooth Mesh Provisioning Leads to MITM | CVE-2020-26557 kernel: predictable Authvalue in Bluetooth Mesh Provisioning Leads to MITM | ||
| Petr Matousek | 2021-05-26 15:46:25 UTC | CC | darcari, dzickus, gtiwari, hwkernel-mgr | |
| Red Hat Bugzilla | 2021-05-30 12:04:00 UTC | CC | blc | |
| Red Hat Bugzilla | 2021-05-30 12:39:22 UTC | CC | bhu | |
| Jeff Fearn 🐞 | 2021-06-03 11:17:06 UTC | CC | blc | |
| Jeff Fearn 🐞 | 2021-06-03 11:53:04 UTC | CC | bhu | |
| Pedro Sampaio | 2021-06-08 18:03:26 UTC | Blocks | 1969593 | |
| Rohit Keshri | 2021-06-08 18:10:38 UTC | Blocks | 1904532 | |
| Rohit Keshri | 2021-06-08 18:31:16 UTC | Depends On | 1969610, 1969609 | |
| Rohit Keshri | 2021-06-08 18:40:16 UTC | CC | bnocera, dwmw2, spacewar | |
| Rohit Keshri | 2021-06-08 18:40:40 UTC | Depends On | 1969618 | |
| Red Hat Bugzilla | 2021-09-15 05:46:44 UTC | CC | jglisse | |
| Red Hat Bugzilla | 2022-06-04 08:04:56 UTC | CC | fpacheco | |
| Red Hat Bugzilla | 2022-07-16 03:21:01 UTC | CC | brdeoliv | |
| Red Hat Bugzilla | 2022-12-26 18:52:30 UTC | CC | gtiwari | |
| Red Hat Bugzilla | 2022-12-31 23:35:17 UTC | CC | fhrbata | |
| Red Hat Bugzilla | 2023-04-01 08:40:41 UTC | CC | dhoward | |
| Red Hat Bugzilla | 2023-07-07 08:32:20 UTC | CC | security-response-team | |
| Assignee | security-response-team | nobody |
Back to bug 1960009