CVE-2024-26889

Summary

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: hci_core: Fix possible buffer overflow

struct hci_dev_info has a fixed size name[8] field so in the event that hdev->name is bigger than that strcpy would attempt to write past its size, so this fixes this problem by switching to use strscpy.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux194ab82c1ea187512ff2f822124bd05b63fc9f76 < 6d5a9d4a7bcbb7534ce45a18a52e7bd23e69d8acaffected
LinuxLinuxb48595f5b1c6e81e06e164e7d2b7a30b1776161e < 54a03e4ac1a41edf8a5087bd59f8241b0de96d3daffected
LinuxLinuxffb060b136dd75a033ced0fc0aed2882c02e8b56 < d47e6c1932cee02954ea588c9f09fd5ecefeadfcaffected
LinuxLinuxbbec1724519ecd9c468d1186a8f30b7567175bfb < 2e845867b4e279eff0a19ade253390470e07e8a1affected
LinuxLinuxdcda165706b9fbfd685898d46a6749d7d397e0c0 < a41c8efe659caed0e21422876bbb6b73c15b5244affected
LinuxLinuxdcda165706b9fbfd685898d46a6749d7d397e0c0 < 8c28598a2c29201d2ba7fc37539a7d41c264fb10affected
LinuxLinuxdcda165706b9fbfd685898d46a6749d7d397e0c0 < 2edce8e9a99dd5e4404259d52e754fdc97fb42c2affected
LinuxLinuxdcda165706b9fbfd685898d46a6749d7d397e0c0 < 81137162bfaa7278785b24c1fd2e9e74f082e8e4affected
LinuxLinuxd9ce7d438366431e5688be98d8680336ce0a0f8daffected
LinuxLinuxa55d53ad5c86aee3f6da50ee73626008997673faaffected
LinuxLinux5558f4312dca43cebfb9a1aab3d632be91bbb736affected
LinuxLinux4.19.297 < 4.19.311affected
LinuxLinux5.4.259 < 5.4.273affected
LinuxLinux5.10.199 < 5.10.214affected
LinuxLinux5.15.137 < 5.15.153affected
LinuxLinux4.14.328 < 4.15affected
LinuxLinux6.1.60 < 6.2affected
LinuxLinux6.5.9 < 6.6affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux4.19.311 <= 4.19.*unaffected
LinuxLinux5.4.273 <= 5.4.*unaffected
LinuxLinux5.10.214 <= 5.10.*unaffected
LinuxLinux5.15.153 <= 5.15.*unaffected
LinuxLinux6.6.23 <= 6.6.*unaffected
LinuxLinux6.7.11 <= 6.7.*unaffected
LinuxLinux6.8.2 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

Additional References

References