PT-2024-7594 · Linux+7 · Linux Kernel+7
Published
2024-06-28
·
Updated
2026-05-26
·
CVE-2024-41062
CVSS v2.0
6.0
Medium
| Vector | AV:L/AC:H/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue occurs between the system call to close the sock and hci rx work, where the former releases the sock and the latter accesses it without lock protection. This can lead to a work thread accessing a released sock when receiving data. To resolve this, a chan mutex is added in the rx callback of the sock to achieve synchronization between the sock release and recv cb. The problem is related to the
l2cap sock recv cb() function in the net/bluetooth/l2cap sock.c module of the Linux kernel.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu