CVE-2024-58241

Summary

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: hci_core: Disable works on hci_unregister_dev

This make use of disable_work_* on hci_unregister_dev since the hci_dev is about to be freed new submissions are not disarable.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0d151a103775dd9645c78c97f77d6e2a5298d913 < cfdb13a54e05eb98d9940cb6d1a13e7f994d811faffected
LinuxLinux0d151a103775dd9645c78c97f77d6e2a5298d913 < 989fa5171f005ecf63440057218d8aeb1795287daffected
LinuxLinux48542881997e17b49dc16b93fe910e0cfcf7a9f9affected
LinuxLinux9cfc84b1d464cc024286f42a090718f9067b80edaffected
LinuxLinuxddeda6ca5f218b668b560d90fc31ae469adbfd92affected
LinuxLinuxd2ce562a5aff1dcd0c50d9808ea825ef90da909faffected
LinuxLinux96600c2e5ee8213dbab5df1617293d8e847bb4faaffected
LinuxLinuxd6cbce18370641a21dd889e8613d8153df15eb39affected
LinuxLinux3f939bd73fed12dddc2a32a76116c19ca47c7678affected
LinuxLinux4.19.319 < 4.20affected
LinuxLinux5.4.281 < 5.5affected
LinuxLinux5.10.223 < 5.11affected
LinuxLinux5.15.164 < 5.16affected
LinuxLinux6.1.101 < 6.2affected
LinuxLinux6.6.42 < 6.7affected
LinuxLinux6.9.11 < 6.10affected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.11.6 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References