PT-2024-34088 · Linux+8 · Linux Kernel+8
Sungwoo Kim
·
Published
2024-10-29
·
Updated
2025-10-03
·
CVE-2024-50255
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Linux kernel versions prior to 6.6.61
Description:
A null pointer dereference issue has been identified in the Linux kernel's Bluetooth functionality, specifically in the
hci read supported codecs function. This issue arises when the hci cmd sync sk() function returns NULL for unknown opcodes, leading to a null pointer dereference in the cmd sync function for HCI OP READ LOCAL CODECS. The problem occurs because there is no hci cc entry for HCI OP READ LOCAL CODECS, causing the function to assume a status value of skb->data[0]. This results in a null pointer dereference in the range [0x0000000000000070-0x0000000000000077].Recommendations:
To resolve this issue, update the Linux kernel to version 6.6.61 or later.
As a temporary workaround, consider disabling the Bluetooth functionality until a patch is available.
Exploit
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu