CVE-2020-26558
First published: Thu Jan 21 2021(Updated: )
A vulnerability was found in Linux Kernel, where Passkey Entry protocol used in Secure Simple Pairing (SSP), Secure Connections (SC) and LE Secure Connections (LESC) of the Bluetooth Core Specification is vulnerable to an impersonation attack where an active attacker can impersonate the initiating device without any previous knowledge. Refer: <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6d19628f539fccf899298ff02ee4c73e4bf6df3f">https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6d19628f539fccf899298ff02ee4c73e4bf6df3f</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/bluez | <0:5.56-1.el8 | 0:5.56-1.el8 |
| redhat/bluez | <5.57 | 5.57 |
| Android | ||
| Bluetooth Core Specification | >=2.1<=5.2 | |
| Red Hat Fedora | =34 | |
| Debian Linux | =9.0 | |
| Linux Kernel | <5.13 | |
| All of | ||
| Intel Wi-Fi 6E AX210 firmware | ||
| Intel Wi-Fi 6 AX210 | ||
| All of | ||
| Intel Wi-Fi 6E AX201 Firmware | ||
| Intel AX201 Firmware | ||
| All of | ||
| Intel AX200 Firmware | ||
| Intel AX200 Firmware | ||
| All of | ||
| Intel AC 9560 Firmware | ||
| Intel Wireless-AC 9560 | ||
| All of | ||
| Intel PROSet AC 9462 Firmware | ||
| Intel ProSet AC 9462 | ||
| All of | ||
| Intel PROSet AC 9461 Firmware | ||
| Intel ProSet AC 9461 | ||
| All of | ||
| Intel ProSet AC 9260 Firmware | ||
| Intel PROSet Wireless for AC 9260 | ||
| All of | ||
| Intel ProSet AC 8265 Firmware | ||
| Intel AC 8265 Firmware | ||
| All of | ||
| Intel ProSet Wireless Software and Drivers for Ac 8260 | ||
| Intel PROSet AC 8260 | ||
| All of | ||
| Intel AC3168 Firmware | ||
| Intel AC 3168 Firmware | ||
| All of | ||
| Intel AC 7265 | ||
| Intel AC 7265 Firmware | ||
| All of | ||
| Intel PROSet/Wireless Software for Intel Dual Band Wireless-AC 3165 | ||
| Intel AC 3165 Firmware | ||
| All of | ||
| Intel Killer Wi-Fi 6E AX1675 Firmware | ||
| Intel AX1675 Firmware | ||
| All of | ||
| Intel Killer Wi-Fi 6 AX1650 firmware | ||
| Intel AX1650 Firmware | ||
| All of | ||
| Intel AC 1550 Firmware | ||
| Intel Killer Wireless-ac 1550 | ||
| Intel Wi-Fi 6E AX210 firmware | ||
| Intel Wi-Fi 6 AX210 | ||
| Intel Wi-Fi 6E AX201 Firmware | ||
| Intel AX201 Firmware | ||
| Intel AX200 Firmware | ||
| Intel AX200 Firmware | ||
| Intel AC 9560 Firmware | ||
| Intel Wireless-AC 9560 | ||
| Intel PROSet AC 9462 Firmware | ||
| Intel ProSet AC 9462 | ||
| Intel PROSet AC 9461 Firmware | ||
| Intel ProSet AC 9461 | ||
| Intel ProSet AC 9260 Firmware | ||
| Intel PROSet Wireless for AC 9260 | ||
| Intel ProSet AC 8265 Firmware | ||
| Intel AC 8265 Firmware | ||
| Intel ProSet Wireless Software and Drivers for Ac 8260 | ||
| Intel PROSet AC 8260 | ||
| Intel AC3168 Firmware | ||
| Intel AC 3168 Firmware | ||
| Intel AC 7265 | ||
| Intel AC 7265 Firmware | ||
| Intel PROSet/Wireless Software for Intel Dual Band Wireless-AC 3165 | ||
| Intel AC 3165 Firmware | ||
| Intel Killer Wi-Fi 6E AX1675 Firmware | ||
| Intel AX1675 Firmware | ||
| Intel Killer Wi-Fi 6 AX1650 firmware | ||
| Intel AX1650 Firmware | ||
| Intel AC 1550 Firmware | ||
| Intel Killer Wireless-ac 1550 | ||
| debian/bluez | 5.55-3.1+deb11u1 5.55-3.1+deb11u2 5.66-1+deb12u2 5.66-1+deb12u1 5.79-2 | |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.20-1 6.12.21-1 |
Remedy
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-26558 https://nvd.nist.gov/vuln/detail/CVE-2020-26558
- https://bugzilla.redhat.com/show_bug.cgi?id=1918602
- https://access.redhat.com/errata/RHSA-2021:4432
- https://access.redhat.com/security/cve/cve-2020-26558
- https://kb.cert.org/vuls/id/799380
- https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html
- https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html
- https://lists.debian.org/debian-lts-announce/2021/06/msg00022.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NSS6CTGE4UGTJLCOZOASDR3T3SLL6QJZ/
- https://security.gentoo.org/glsa/202209-16
- https://www.bluetooth.com/learn-about-bluetooth/key-attributes/bluetooth-security/reporting-security/
- https://www.debian.org/security/2021/dsa-4951
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00517.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00520.html
- https://launchpad.net/bugs/cve/CVE-2020-26558
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NSS6CTGE4UGTJLCOZOASDR3T3SLL6QJZ/
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6d19628f539fccf899298ff02ee4c73e4bf6df3f
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1964968
- https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=00da0fb4972cf59e1c075f313da81ea549cb8738
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1965051
- https://source.android.com/docs/security/bulletin/2021-06-01/#asterisk
- https://source.android.com/docs/security/bulletin/2021-06-01 (Advisory)
- https://www.bluetooth.com/learn-about-bluetooth/key-attributes/bluetooth-security/passkey-entry/
- https://git.kernel.org/linus/6d19628f539fccf899298ff02ee4c73e4bf6df3f
- https://security-tracker.debian.org/tracker/CVE-2020-26558
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26558
- https://nvd.nist.gov/vuln/detail/CVE-2020-26558
- https://ubuntu.com/security/CVE-2020-26558
Frequently Asked Questions
What is the severity of CVE-2020-26558?
CVE-2020-26558 is classified as a high severity vulnerability due to the potential for active impersonation attacks.
How do I fix CVE-2020-26558?
To fix CVE-2020-26558, update the affected software packages to the specified versions or later, such as bluez version 5.57 or higher.
What software is affected by CVE-2020-26558?
CVE-2020-26558 affects various versions of the bluez package and the Linux kernel, among others that implement Bluetooth Core Specification.
What type of attack is associated with CVE-2020-26558?
CVE-2020-26558 is associated with impersonation attacks that can be executed by an active attacker during Bluetooth pairing processes.
Is CVE-2020-26558 limited to specific operating systems?
CVE-2020-26558 impacts multiple operating systems including those using specific versions of the Linux Kernel and bluez packages.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-26558
- agent/software-canonical-lookup
- agent/remedy
- agent/references
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- collector/android-source
- source/Android
- agent/software-canonical-lookup-request
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/tags
- agent/event
- package-manager/redhat
- vendor/google
- canonical/android
- vendor/bluetooth
- canonical/bluetooth core specification
- version/bluetooth core specification/2.1
- version/bluetooth core specification/5.2
- vendor/fedoraproject
- canonical/red hat fedora
- version/red hat fedora/34
- vendor/debian
- canonical/debian linux
- version/debian linux/9.0
- vendor/linux
- canonical/linux kernel
- vendor/intel
- canonical/intel wi-fi 6e ax210 firmware
- canonical/intel wi-fi 6 ax210
- canonical/intel wi-fi 6e ax201 firmware
- canonical/intel ax201 firmware
- canonical/intel ax200 firmware
- canonical/intel ac 9560 firmware
- canonical/intel wireless-ac 9560
- canonical/intel proset ac 9462 firmware
- canonical/intel proset ac 9462
- canonical/intel proset ac 9461 firmware
- canonical/intel proset ac 9461
- canonical/intel proset ac 9260 firmware
- canonical/intel proset wireless for ac 9260
- canonical/intel proset ac 8265 firmware
- canonical/intel ac 8265 firmware
- canonical/intel proset wireless software and drivers for ac 8260
- canonical/intel proset ac 8260
- canonical/intel ac3168 firmware
- canonical/intel ac 3168 firmware
- canonical/intel ac 7265
- canonical/intel ac 7265 firmware
- canonical/intel proset/wireless software for intel dual band wireless-ac 3165
- canonical/intel ac 3165 firmware
- canonical/intel killer wi-fi 6e ax1675 firmware
- canonical/intel ax1675 firmware
- canonical/intel killer wi-fi 6 ax1650 firmware
- canonical/intel ax1650 firmware
- canonical/intel ac 1550 firmware
- canonical/intel killer wireless-ac 1550
- package-manager/debian