3 matches found
CVE-2024-26889
CVE-2024-26889 refers to a Linux kernel security fix for a Bluetooth (hci_core) buffer overflow. The root cause was a fixed-size name field in struct hci_dev_info (name[8]); a larger hdev->name could cause strcpy to overrun its destination. The fix switches to strscpy to safely copy the device...
CVE-2024-27416
CVE-2024-27416 is a Linux kernel vulnerability: Bluetooth hci_event handling of HCI on_IO_CAPA_REQUEST when Read Remote Extended Features is pending could lead to an incorrect assumption that the remote supports SSP. The issue is addressed in kernel code by fixing the HCI_EV_IO_CAPA_REQUEST handl...
CVE-2024-35825
Summary (CVE-2024-35825) : The issue in the Linux kernel USB gadget for CDC NCM NTB handling occurs when a zero wBlockLength is encountered. The code’s previous logic could repeatedly process the same NTB if block length is zero, risking a crash. The connected Astra Linux advisory confirms this v...