Skip to content

Local privilege escalation in org.blueman.Mechanism D-Bus interface

Critical
cschramm published GHSA-59mx-cfv4-h4hw Oct 5, 2020

Package

No package listed

Affected versions

<= 2.0.2

Patched versions

2.0.3

Description

Impact

The org.blueman.Mechanism D-Bus interface allowed local users to gain root privileges by executing arbitrary code.

Patches

The issue got fixed in blueman 2.0.3.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8612
#416

For more information

If you have any questions or comments about this advisory:

Severity

Critical

CVE ID

CVE-2015-8612

Weaknesses

No CWEs

Credits