CVE-2024-24857 | Linux Kernel up to 6.8-rc1 Bluetooth conn_info_min_age_set/conn_info_max_age_set race condition

Inserito da Angelo Barbosa | Feb 5, 2024 | CVE

A vulnerability classified as problematic was found in Linux Kernel up to 6.8-rc1. This vulnerability affects the function conn_info_min_age_set/conn_info_max_age_set of the component Bluetooth. The manipulation leads to race condition.

This vulnerability was named CVE-2024-24857. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24857 | Linux Kernel up to 6.8-rc1 Bluetooth conn_info_min_age_set/conn_info_max_age_set race condition

Post correlati

CVE-2024-43857 | Linux Kernel up to 6.10.2 f2fs is_end_zone_blkaddr null pointer dereference (381cbe85592c/c82bc1ab2a8a)

CVE-2024-29452 | ROS2 Humble Hawksbill deserialization

CVE-2024-41085 | Linux Kernel up to 6.9.7 cxl_find_nvdimm_bridge null pointer dereference (1d064e4fbebc/84ec985944ef)

CVE-2024-5896 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php save_users id sql injection