CVE-2024-26888

Published: Apr 17, 2024Modified: Jan 7, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: msft: Fix memory leak Fix leaking buffer allocated to send MSFT_OP_LE_MONITOR_ADVERTISEMENT.

Affected (4)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 6.4.16 to 6.5
Linux Linux Kernel	From 6.5.3 to 6.6.23
Linux Linux Kernel	From 6.7 to 6.7.11
Linux Linux Kernel	From 6.8 to 6.8.2

Related CWEs

CWE-401

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (8)

https://git.kernel.org/stable/c/5987b9f7d9314c7411136005b3a52f61a8cc0911

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/5cb93417c93716a5404f762f331f5de3653fd952

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/98e9920c75e0790bff947a00d192d24bf1c724e0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/a6e06258f4c31eba0fcd503e19828b5f8fe7b08b

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/5987b9f7d9314c7411136005b3a52f61a8cc0911

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/5cb93417c93716a5404f762f331f5de3653fd952

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/98e9920c75e0790bff947a00d192d24bf1c724e0

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/a6e06258f4c31eba0fcd503e19828b5f8fe7b08b

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.