Return-Path: Message-ID: <42F34840.4070503@csr.com> From: Steven Singer MIME-Version: 1.0 To: bluez-devel@lists.sourceforge.net Subject: Re: [Bluez-devel] Possible security vulnerability in hcid when calling pin helper References: <20050805050932.3111586d.henryk@ploetzli.ch> <1123211794.8331.104.camel@pegasus> In-Reply-To: <1123211794.8331.104.camel@pegasus> Content-Type: text/plain; charset=ISO-8859-1 Sender: bluez-devel-admin@lists.sourceforge.net Errors-To: bluez-devel-admin@lists.sourceforge.net Reply-To: bluez-devel@lists.sourceforge.net List-Unsubscribe: , List-Id: BlueZ development List-Post: List-Help: List-Subscribe: , List-Archive: Date: Fri, 05 Aug 2005 12:06:40 +0100 Marcel Holtmann wrote: > Henryk Pl?tz wrote: >> I just stumbled upon a bug in hcid that can possibly be used as a >> security vulnerability: ... > thanks for catching this problem. Do you have a fix for it? On behalf of everyone at Unplugfest with whom you've been doing security testing, I'd just like to say, using my best impression of Nelson Muntz from The Simpsons, "Ha Ha!". :-) - Steven -- ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. ********************************************************************** ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf _______________________________________________ Bluez-devel mailing list Bluez-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bluez-devel