← Back

CVE-2024-11586

nvd nist
Published: Nov 23, 2024Modified: Aug 26, 2025

JSON object

Loading...
4.0
Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Exploitability: 0.3 / Impact: 3.6
Source: security@ubuntu.com (Secondary)

Description

Ubuntu's implementation of pulseaudio can be crashed by a malicious program if a bluetooth headset is connected.

Affected (1)

Pulseaudio
1 product
Pulseaudio
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Pulseaudio
All versions
Running on/withPlatform Versions
Canonical
Ubuntu Linux
Version 16.04

Related CWEs

CWE-404
Improper Resource Shutdown or Release
The product does not release or incorrectly releases a resource before it is made available for re-use.

References (2)

Source: security@ubuntu.com
Issue TrackingPatch
Source: security@ubuntu.com
Third Party Advisory

Timeline

No history available yet.