oss-sec mailing list archives

Re: Linux BlueBorne vulnerabilities

From: Armis Security <security () armis com>
Date: Thu, 14 Sep 2017 20:14:03 +0000

Hi Petr.

On August 15th we have contacted one of the senior maintiners of BlueZ and
attempted to establish a longer embargo period with him. Unfortunatelly his
suggestion was to post our findings to linux-bluetooth () vger kernel org,
which is a public mailing list.

So we decided to disclose our findings to the secure mailing list that
unfortunatelly only have a maximum of 7 days embargo periods.

I am happy to hear the red hat security team allows for longer embargo
periods, and we will contact you directly in the future.


Thank you,

Armis Labs.

Current thread:

Linux BlueBorne vulnerabilities Armis Security (Sep 13)
- Re: Linux BlueBorne vulnerabilities Petr Matousek (Sep 14)
  - Re: Linux BlueBorne vulnerabilities Armis Security (Sep 14)
    - Re: Linux BlueBorne vulnerabilities Solar Designer (Sep 14)
    - Re: Linux BlueBorne vulnerabilities Ben Seri (Sep 15)
    - Re: Linux BlueBorne vulnerabilities Solar Designer (Sep 15)
    - Re: Linux BlueBorne vulnerabilities Ben Seri (Sep 15)
    - Re: Linux BlueBorne vulnerabilities Solar Designer (Sep 27)
- Re: Linux BlueBorne vulnerabilities Solar Designer (Sep 14)