CVE-2024-50077

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version

Description: The issue arises when bt debugfs is not created successfully due to either CONFIG DEBUG FS or CONFIG DEBUG FS ALLOW ALL being unset. This leads to iso init() returning early without setting iso inited to true, resulting in duplicate calls to proto register(), bt sock register(), etc. when iso init() is called subsequently. With CONFIG LIST HARDENED and CONFIG BUG ON DATA CORRUPTION enabled, the duplicate call to proto register() triggers a bug. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations: To resolve the issue, update the Linux kernel to a version that includes the fix for this problem. At the moment, there is no information about a newer version that contains a fix for this vulnerability.