Lucene search

K
ubuntucveUbuntu.comUB:CVE-2024-24859
HistoryFeb 05, 2024 - 12:00 a.m.

CVE-2024-24859

2024-02-0500:00:00
ubuntu.com
ubuntu.com
10
linux kernel
bluetooth
race condition
denial of service
sniffing exception
bugzilla
sbeattie
debugfs
ubuntu kernels
cve-2024-24859

4.8 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

A race condition was found in the Linux kernel’s net/bluetooth in
sniff_{min,max}_interval_set() function. This can result in a bluetooth
sniffing exception issue, possibly leading denial of service.

Bugs

Notes

Author Note
Priority reason: Requires write access to debugfs entries, which are restricted to root by default on Ubuntu kernels.
sbeattie 7835fcfd132e (Bluetooth: Fix TOCTOU in HCI debugfs implementation, 2024-03-27) doesn’t reference this CVE in its commit message, but fixes the issues in the sniff_{min,max}_interval_set() functions as well.

4.8 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

Related for UB:CVE-2024-24859