12 matches found
CVE-2024-36011
CVE-2024-36011 affects the Linux kernel where the Bluetooth HCI code could dereference a NULL pointer in hci_le_big_sync_established_evt(). The vulnerability is local (per CVSS vector: AV:L, AC:L, PR:L, UI:N) with a MEDIUM base score of 5.5 and an ADMIN/availability impact of HIGH. The connected ...
CVE-2024-56780
Technical details about CVE-2024-56780 are not provided in the connected documents. The initial description outlines a quota writeback flush race in Linux kernel/ext4 but lacks vendor/version/product mapping or patch specifics in these sources. Monitor for updates.
CVE-2024-56654
CVE-2024-56654 — Linux kernel Bluetooth hci_event fix : Addresses unsafe use of rcu_read_lock/unlock inside list_for_each_entry_rcu, where entries dereferenced with rcu_dereference must be accessed only within an RCU read-side critical section. The patch resolves a safety issue by ensuring correc...
CVE-2025-21650
Technical details about CVE-2025-21650 are not provided in the connected documents. The initial description is detailed, but there is no supplementary data in the connected sources to confirm affected products/versions, impact, or fixes. Monitor for updates.
CVE-2024-58020
CVE-2024-58020 affects the Linux kernel HID multitouch driver. The issue arises when devm_kasprintf() returns NULL and the result is used in mt_input_configured() without a NULL check, risking NULL pointer dereference. Acknowledged fixes add a NULL check in mt_input_configured(); impact is listed...
CVE-2024-26888
CVE-2024-26888 : Linux kernel vulnerability in Bluetooth msft path reported as fixed by a memory leak fix. The issue involved a leaking buffer allocated to send MSFT_OP_LE_MONITOR_ADVERTISEMENT. Public docs confirm the fix; CVSS indicates LOCAL attack vector with low to moderate impact (Base 5.5,...
CVE-2024-26917
CVE-2024-26917 affects the Linux kernel SCSI/FCoE path. The vulnerability stems from reverting a commit that changed spin lock usage for FCoE devices (from bh to irqsave), which caused interrupts to be lost for FCoE devices. The problem was introduced in the patch set around scsi: fcoe: Fix poten...
CVE-2023-52525
CVE-2023-52525 affects the Linux kernel mwifiex wireless driver. The root cause is an out-of-bounds/overshoot check in mwifiex_process_rx_packet; the patch tightens the condition so the code path that accesses RFC1042 headers is skipped when the buffer is too small, allowing packets to be process...
CVE-2023-52577
CVE-2023-52577 pertains to the Linux kernel DCCP handling. The issue stems from an incorrect assumption about the DCCP header field dh->dccph_x (the 9th byte, offset 8) and related ICMP message sizing, which could affect processing of DCCP packets and ICMP responses. The description notes that...
CVE-2025-38007
CVE-2025-38007 affects HID uclogic in the Linux kernel. Root cause: uclogic_input_configured() dereferences a NULL after devm_kasprintf() returns NULL due to allocation failure. Mitigation: a NULL check is added after devm_kasprintf() to prevent the dereference. Described fixes are documented in ...
CVE-2026-46138
The CVE-2026-46138 issue affects the Linux kernel Bluetooth subsystem, specifically hci_le_create_big_complete_evt. A loop over BT_BOUND connections for a BIG handle may access ev->bis_handle[i++] without ensuring i
CVE-2026-43019
The CVE-2026-43019 issue affects the Linux kernel Bluetooth HCI path, where hci_conn lookups and field access in set_cig_params_sync were not properly protected by the hdev lock, allowing a use-after-free when an hci_conn could be freed concurrently. The documented fix is to take the hdev lock to...