Univention Bugzilla – Bug 49379
firmware-nonfree: Multiple issues (4.4)
Last modified: 2019-05-02 13:22:42 CEST
New Debian firmware-nonfree 20161130-5 fixes: This update addresses the following issue: * Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange (CVE-2018-5383)
--- mirror/ftp/4.3/unmaintained/4.3-3/source/firmware-nonfree_20161130-4.dsc +++ apt/ucs_4.4-0-errata4.4-0/source/firmware-nonfree_20161130-5.dsc @@ -1,3 +1,10 @@ +20161130-5 [Mon, 25 Mar 2019 16:54:32 +0000] Ben Hutchings <ben@decadent.org.uk>: + + [ Emilio Pozuelo Monfort ] + * CVE-2018-5383: + - atheros: Update BT firmware files for QCA ROME chip. + - iwlwifi: Update Intel BT firmware to 20.60.0.2. + 20161130-4 [Sat, 13 Oct 2018 20:27:06 +0100] Ben Hutchings <ben@decadent.org.uk>: * debian/bin/gencontrol.py: Set encoding to UTF-8 globally <http://10.200.17.11/4.4-0/#6133496246702326608>
OK: yaml OK: announce_errata OK: patch ~OK: piuparts EULA requires interactive confirmation. [4.4-0] 68302ffb57 Bug #49379: firmware-nonfree 20161130-5 doc/errata/staging/firmware-nonfree.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<http://errata.software-univention.de/ucs/4.4/61.html>