CVE-2024-24860 | Linux Kernel up to 6.8-rc2 Bluetooth Device min_key_size_set/max_key_size_set race condition

Posted by Angelo Barbosa | Feb 5, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.8-rc2 and classified as problematic. Affected by this issue is the function min_key_size_set/max_key_size_set of the component Bluetooth Device Handler. The manipulation leads to race condition.

This vulnerability is handled as CVE-2024-24860. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24860 | Linux Kernel up to 6.8-rc2 Bluetooth Device min_key_size_set/max_key_size_set race condition

Related Posts

CVE-2023-42800 | moonlight-stream moonlight-common-c GameStream Client buffer overflow (GHSA-4927-23jw-rq62)

CVE-2023-7137 | code-projects Client Details System 1.0 HTTP POST Request uemail sql injection

CVE-2024-22151 | Import and Export Users and Customers Plugin up to 1.24.6 on WordPress REST Endpoint fire_cron authorization

CVE-2024-47587 | SAP Cash Management up to S4CORE 103 Cash Operations authorization