5.5
CVE-2024-26888
- EPSS 0.23%
- Veröffentlicht 17.04.2024 11:15:10
- Zuletzt bearbeitet 07.01.2025 16:43:58
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
Bluetooth: msft: Fix memory leak
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: msft: Fix memory leak Fix leaking buffer allocated to send MSFT_OP_LE_MONITOR_ADVERTISEMENT.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.4.16 < 6.5
Linux ≫ Linux Kernel Version >= 6.5.3 < 6.6.23
Linux ≫ Linux Kernel Version >= 6.7 < 6.7.11
Linux ≫ Linux Kernel Version >= 6.8 < 6.8.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.129 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/5987b9f7d9314c7411136005b3a52f61a8cc0911
https://git.kernel.org/stable/c/5cb93417c93716a5404f762f331f5de3653fd952
https://git.kernel.org/stable/c/98e9920c75e0790bff947a00d192d24bf1c724e0
https://git.kernel.org/stable/c/a6e06258f4c31eba0fcd503e19828b5f8fe7b08b