Ubuntu Security Notice USN-413-1 January 24, 2007==========20================================================= bluez-utils vulnerability CVE-2006-6899 ========================================================== A security issue affects the following Ubuntu releases:
This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.
The problem can be corrected by upgrading your system to the following package versions:
Ubuntu 5.10: bluez-utils 2.20-0ubuntu3.1
In general, a standard system upgrade is sufficient to effect the necessary changes.
A flaw was discovered in the HID daemon of bluez-utils. A remote attacker could gain control of the mouse and keyboard if hidd was enabled. This does not affect a default Ubuntu installation, since hidd is normally disabled.