CVE-2024-27398 | Linux Kernel up to 6.8 Bluetooth sco_sock_timeout use after free (483bc0818182)

Posted by Angelo Barbosa | May 13, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.8. Affected is the function sco_sock_timeout of the component Bluetooth. The manipulation leads to use after free.

This vulnerability is traded as CVE-2024-27398. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27398 | Linux Kernel up to 6.8 Bluetooth sco_sock_timeout use after free (483bc0818182)

Related Posts

CVE-2024-35397 | Totolink CP900L 4.1.5cu.798_B20221228 Request NTPSyncWithHost hostTime command injection

CVE-2023-49788 | CollaboraOnline prior 23.5.602 Built-in CODE Server App path traversal (GHSA-3r69-xvf7-v94j)

CVE-2024-6395 | GitHub Enterprise Server up to 3.9.16/3.10.13/3.11.11/3.12.5/3.13.0 information disclosure

CVE-2024-43089 | Google Android 12/12L/13/14/15 MediaProvider.java updateInternal permission