PT-2024-7604 · Linux+6 · Linux Kernel+6
Luiz Augusto Von Dentz
·
Published
2024-10-04
·
Updated
2026-03-13
·
CVE-2024-50029
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.58
Description
The issue is related to a use-after-free vulnerability in the
hci enhanced setup sync() function in the Linux kernel's Bluetooth module. This vulnerability can be exploited to impact the confidentiality, integrity, and availability of protected information. The vulnerability occurs when the ACL connection remains valid while hci enhanced setup sync is pending on cmd sync, leading to a slab-use-after-free error.Recommendations
To resolve the issue, update the Linux kernel to version 6.6.58 or later. As a temporary workaround, consider disabling the Bluetooth functionality until a patch is available. Restrict access to the vulnerable
hci enhanced setup sync() function to minimize the risk of exploitation. Avoid using the hci cmd sync work API endpoint until the issue is resolved.Exploit
Fix
DoS
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu