Vulnerability Details : CVE-2024-36880
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: qca: add missing firmware sanity checks
Add the missing sanity checks when parsing the firmware files before
downloading them to avoid accessing and corrupting memory beyond the
vmalloced buffer.
Products affected by CVE-2024-36880
Please log in to view affected product information.
Exploit prediction scoring system (EPSS) score for CVE-2024-36880
0.12%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 32 %
Percentile, the proportion of vulnerabilities that are scored at or less
References for CVE-2024-36880
-
https://git.kernel.org/stable/c/ed53949cc92e28aaa3463d246942bda1fbb7f307
Bluetooth: qca: add missing firmware sanity checks - kernel/git/stable/linux.git - Linux kernel stable tree
-
https://git.kernel.org/stable/c/427281f9498ed614f9aabc80e46ec077c487da6d
Bluetooth: qca: add missing firmware sanity checks - kernel/git/stable/linux.git - Linux kernel stable tree
-
https://git.kernel.org/stable/c/1caceadfb50432dbf6d808796cb6c34ebb6d662c
Bluetooth: qca: add missing firmware sanity checks - kernel/git/stable/linux.git - Linux kernel stable tree
-
https://git.kernel.org/stable/c/02f05ed44b71152d5e11d29be28aed91c0489b4e
Bluetooth: qca: add missing firmware sanity checks - kernel/git/stable/linux.git - Linux kernel stable tree
-
https://git.kernel.org/stable/c/2e4edfa1e2bd821a317e7d006517dcf2f3fac68d
Bluetooth: qca: add missing firmware sanity checks - kernel/git/stable/linux.git - Linux kernel stable tree
Jump to