5.5

CVE-2024-53144

Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE

This aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4
("Bluetooth: Always request for user confirmation for Just Works")
always request user confirmation with confirm_hint set since the
likes of bluetoothd have dedicated policy around JUST_WORKS method
(e.g. main.conf:JustWorksRepairing).

CVE: CVE-2024-8805
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.2.61 < 3.3
LinuxLinux Kernel Version >= 3.4.98 < 3.5
LinuxLinux Kernel Version >= 3.10.48 < 3.11
LinuxLinux Kernel Version >= 3.12.25 < 3.13
LinuxLinux Kernel Version >= 3.14.12 < 3.15
LinuxLinux Kernel Version >= 3.15.5 < 3.16
LinuxLinux Kernel Version >= 3.16.1 < 5.10.236
LinuxLinux Kernel Version >= 5.11 < 5.15.180
LinuxLinux Kernel Version >= 5.16 < 6.1.113
LinuxLinux Kernel Version >= 6.2 < 6.6.55
LinuxLinux Kernel Version >= 6.7 < 6.10.14
LinuxLinux Kernel Version >= 6.11 < 6.11.3
LinuxLinux Kernel Version3.16 Update-
LinuxLinux Kernel Version3.16 Updaterc3
LinuxLinux Kernel Version3.16 Updaterc4
LinuxLinux Kernel Version3.16 Updaterc5
LinuxLinux Kernel Version3.16 Updaterc6
LinuxLinux Kernel Version3.16 Updaterc7
LinuxLinux Kernel Version6.12 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.167
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://www.zerodayinitiative.com/advisories/ZDI-24-1229/
Third Party Advisory
https://git.kernel.org/stable/c/5291ff856d2c5177b4fe9c18828312be30213193
Patch
https://git.kernel.org/stable/c/830c03e58beb70b99349760f822e505ecb4eeb7e
Patch
https://git.kernel.org/stable/c/ad7adfb95f64a761e4784381e47bee1a362eb30d
Patch
https://git.kernel.org/stable/c/b25e11f978b63cb7857890edb3a698599cddb10e
Patch
https://git.kernel.org/stable/c/d17c631ba04e960eb6f8728b10d585de20ac4f71
Patch
https://git.kernel.org/stable/c/22b49d6e4f399a390c70f3034f5fbacbb9413858
Patch
https://git.kernel.org/stable/c/baaa50c6f91ea5a9c7503af51f2bc50e6568b66b
Patch
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html