CVE-2024-27398 — Use After Free in Linux
Severity
7.8HIGHNVD
EPSS
0.7%
top 27.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 14
Latest updateDec 19
Description
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
When the sco connection is established and then, the sco socket
is releasing, timeout_work will be scheduled to judge whether
the sco disconnection is timeout. The sock will be deallocated
later, but it is dereferenced again in sco_sock_timeout. As a
result, the use-after-free bugs will happen. The root cause is
shown below:
Cleanup Thread | Worker Thread
sco_sock_…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages3 packages
▶CVEListV5linux/linux48669c81a65628ef234cbdd91b9395952c7c27fe — 1b33d55fb7355e27f8c82cd4ecd560f162469249+11
Also affects: Debian Linux 10.0, Fedora 39, 40
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-45cm-4v3w-5jpw: In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
When the sco conne↗2024-05-14
OSV▶
CVE-2024-27398: In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout When the sco connect↗2024-05-14
📋Vendor Advisories
23💬Community
1Bugzilla
▶