-

CVE-2024-35967

EPSS 0.02%
Veröffentlicht 20.05.2024 10:15:11
Zuletzt bearbeitet 02.02.2025 11:15:08
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: SCO: Fix not validating setsockopt user input

syzbot reported sco_sock_setsockopt() is copying data without
checking user input length.

BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset
include/linux/sockptr.h:49 [inline]
BUG: KASAN: slab-out-of-bounds in copy_from_sockptr
include/linux/sockptr.h:55 [inline]
BUG: KASAN: slab-out-of-bounds in sco_sock_setsockopt+0xc0b/0xf90
net/bluetooth/sco.c:893
Read of size 4 at addr ffff88805f7b15a3 by task syz-executor.5/12578

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < b0e30c37695b614bee69187f86eaf250e36606ce

Version b96e9c671b05f95126753a22145d4509d45ca197

Status affected

Version < 2c2dc87cdebef3fe3b9d7a711a984c70e376e32e

Version b96e9c671b05f95126753a22145d4509d45ca197

Status affected

Version < 7bc65d23ba20dcd7ecc094a12c181e594e5eb315

Version b96e9c671b05f95126753a22145d4509d45ca197

Status affected

Version < 72473db90900da970a16ee50ad23c2c38d107d8c

Version b96e9c671b05f95126753a22145d4509d45ca197

Status affected

Version < 419a0ffca7010216f0fc265b08558d7394fa0ba7

Version b96e9c671b05f95126753a22145d4509d45ca197

Status affected

Version < 51eda36d33e43201e7a4fd35232e069b2c850b01

Version b96e9c671b05f95126753a22145d4509d45ca197

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.8

Status affected

Version < 3.8

Version 0

Status unaffected

Version <= 5.10.*

Version 5.10.216

Status unaffected

Version <= 5.15.*

Version 5.15.178

Status unaffected

Version <= 6.1.*

Version 6.1.87

Status unaffected

Version <= 6.6.*

Version 6.6.28

Status unaffected

Version <= 6.8.*

Version 6.8.7

Status unaffected

Version <= *

Version 6.9

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.048

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

https://git.kernel.org/stable/c/2c2dc87cdebef3fe3b9d7a711a984c70e376e32e

https://git.kernel.org/stable/c/419a0ffca7010216f0fc265b08558d7394fa0ba7

https://git.kernel.org/stable/c/51eda36d33e43201e7a4fd35232e069b2c850b01

https://git.kernel.org/stable/c/72473db90900da970a16ee50ad23c2c38d107d8c

https://git.kernel.org/stable/c/7bc65d23ba20dcd7ecc094a12c181e594e5eb315

https://git.kernel.org/stable/c/b0e30c37695b614bee69187f86eaf250e36606ce

https://nvd.nist.gov/vuln/detail/CVE-2024-35967

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-35967

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-35967

EUVD