CVE-2024-35966 | Linux Kernel up to 6.8.6 Bluetooth include/linux/sockptr.h rfcomm_sock_setsockopt_old out-of-bounds (c3f787a3eafe/a97de7bff13b)

Posted by Angelo Barbosa | May 20, 2024 | CVE

A vulnerability has been found in Linux Kernel up to 6.8.6 and classified as problematic. This vulnerability affects the function rfcomm_sock_setsockopt_old in the library include/linux/sockptr.h of the component Bluetooth. The manipulation leads to out-of-bounds read.

This vulnerability was named CVE-2024-35966. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-35966 | Linux Kernel up to 6.8.6 Bluetooth include/linux/sockptr.h rfcomm_sock_setsockopt_old out-of-bounds (c3f787a3eafe/a97de7bff13b)

Related Posts

CVE-2023-49777 | YITH WooCommerce Product Add-Ons Plugin up to 4.3.0 on WordPress deserialization

CVE-2023-45921 | vim 9.0 File handle_viminfo_register null pointer dereference

CVE-2024-8466 | PHPGurukul Job Portal 1.0 controller.php CATEGORY sql injection

CVE-2024-31807 | Totolink EX200 4.0.3c.7646_B20201211 NTPSyncWithHost hostTime Privilege Escalation