Google warns of a severe flaw in kernel versions below Linux 5.9 that support BlueZ, which is the official Linux Bluetooth stack.
"Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access," the Intel advisory for CVE-2020-12351 states. Updating to the recently released Linux kernel 5.9 is recommended.
Read more at ZDNet.
Comments