Lucene search
AnolisCVE-2024-24858HistoryFeb 05, 2024 - 8:15 a.m.
CVE-2024-24858
2024-02-0508:15:44
CWE-362
Anolis
web.nvd.nist.gov
43
cve-2024-24858
linux kernel
net/bluetooth
race condition
denial of service
CVSS3
5.3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.8
Confidence
High
EPSS
0
Percentile
12.7%
A race condition was found in the Linux kernel’s net/bluetooth in {conn,adv}_{min,max}_interval_set() function. This can result in I2cap connection or broadcast abnormality issue, possibly leading to denial of service.
Affected configurations
Node
linuxlinux_kernelRange≤3.19.8
ORlinuxlinux_kernelRange6.0–6.7.2
ORlinuxlinux_kernelMatch6.8rc1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | 6.8 | cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"modules": [
"bluetooth"
],
"packageName": "kernel",
"platforms": [
"Linux",
"x86",
"ARM"
],
"product": "Linux kernel",
"programFiles": [
"https://gitee.com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/hci_debugfs.c"
],
"repo": "https://gitee.com/anolis/cloud-kernel.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "v6.8-rc2",
"status": "affected",
"version": "v4.0-rc1",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
prion
prion
Race condition
2024-02-05 08:15:00
cvelist
cvelist
nvd
nvd
CVE-2024-24858
2024-02-05 08:15:44
debiancve
debiancve
CVE-2024-24858
2024-02-05 08:15:44
redhatcve
redhatcve
CVE-2024-24858
2024-02-27 11:04:12
cbl_mariner
cbl_mariner
CVE-2024-24858 affecting package kernel for versions less than 6.6.35.1-4
2024-08-14 20:43:58
ubuntucve
ubuntucve
CVE-2024-24858
2024-02-05 00:00:00
nessus
nessus
Photon OS 3.0: Linux PHSA-2024-3.0-0765
2024-08-03 00:00:00
Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6922-2)
2024-08-01 00:00:00
Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6922-1)
2024-07-31 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2024-3.0-0765
2024-06-07 00:00:00
Moderate Photon OS Security Update - PHSA-2024-4.0-0607
2024-05-10 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0274
2024-05-18 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-07-29 00:00:00
Linux kernel vulnerabilities
2024-08-01 00:00:00
Linux kernel vulnerabilities
2024-08-01 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6922-1)
2024-07-30 00:00:00
Ubuntu: Security Advisory (USN-6922-2)
2024-08-02 00:00:00
Mageia: Security Advisory (MGASA-2024-0142)
2024-04-23 00:00:00
osv
osv
linux-lowlatency-hwe-6.5 vulnerabilities
2024-08-01 13:39:54
linux-nvidia-6.5 vulnerabilities
2024-07-29 09:54:35
linux - security update
2024-04-13 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-04-23 04:20:56
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39
CVSS3
5.3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.8
Confidence
High
EPSS
0
Percentile
12.7%
Related for CVE-2024-24858