CVE-2024-57879

Summary

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: iso: Always release hdev at the end of iso_listen_bis

Since hci_get_route holds the device before returning, the hdev should be released with hci_dev_put at the end of iso_listen_bis even if the function returns with an error.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux02171da6e86a73e1b343b36722f5d9d5c04b3539 < 4ca50db1c567d658d173c5ef3ee6c52b0b03603caffected
LinuxLinux02171da6e86a73e1b343b36722f5d9d5c04b3539 < 9c76fff747a73ba01d1d87ed53dd9c00cb40ba05affected
LinuxLinuxa6c3af0a620082d191dabc69c4925b3e6c26dd48affected
LinuxLinux6.8.12 < 6.9affected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.12.6 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

References