CVE-2024-24857 – Race condition vulnerability in Linux kernel bluetooth in conn_info_{min,max}_age_set()
https://notcve.org/view.php?id=CVE-2024-24857
A race condition was found in the Linux kernel's net/bluetooth device driver in conn_info_{min,max}_age_set() function. This can result in integrity overflow issue, possibly leading to bluetooth connection abnormality or denial of service. Se encontró una condición de ejecución en el controlador de dispositivo net/bluetooth del kernel de Linux en la función conn_info_{min,max}_age_set(). Esto puede provocar un problema de desbordamiento de enteros, lo que posiblemente provoque una anomalía en la conexión Bluetooth o una denegación de servicio. A race condition was found in the Linux kernel's net/bluetooth device driver within the conn_info_{min,max}_age_set() function. • https://bugzilla.openanolis.cn/show_bug.cgi?id=8155 https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html https://access.redhat.com/security/cve/CVE-2024-24857 https://bugzilla.redhat.com/show_bug.cgi?id=2266247 • CWE-190: Integer Overflow or Wraparound CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2024-24858 – Race condition vulnerability in Linux kernel net/bluetooth in {conn,adv}_{min,max}_interval_set()
https://notcve.org/view.php?id=CVE-2024-24858
A race condition was found in the Linux kernel's net/bluetooth in {conn,adv}_{min,max}_interval_set() function. This can result in I2cap connection or broadcast abnormality issue, possibly leading to denial of service. Se encontró una condición de ejecución en la red/bluetooth del kernel de Linux en la función {conn,adv}_{min,max}_interval_set(). Esto puede provocar una conexión I2cap o un problema de anomalía en la transmisión, lo que posiblemente provoque una denegación de servicio. A race condition flaw was found in the Linux kernel's net/bluetooth, specifically in the {conn,adv}_{min,max}_interval_set() function, which may disrupt I2cap connections, possibly causing a denial of service. • https://bugzilla.openanolis.cn/show_bug.cgi?id=8154 https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html https://access.redhat.com/security/cve/CVE-2024-24858 https://bugzilla.redhat.com/show_bug.cgi?id=2266249 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2024-24859 – Race condition vulnerability in Linux kernel bluetooth sniff_{min,max}_interval_set()
https://notcve.org/view.php?id=CVE-2024-24859
A race condition was found in the Linux kernel's net/bluetooth in sniff_{min,max}_interval_set() function. This can result in a bluetooth sniffing exception issue, possibly leading denial of service. Se encontró una condición de ejecución en la red/bluetooth del kernel de Linux en la función sniff_{min,max}_interval_set(). Esto puede provocar un problema de excepción de rastreo de Bluetooth, lo que posiblemente provoque una denegación de servicio. A race condition vulnerability was found in the Linux kernel's net/bluetooth in sniff_{min,max}_interval_set() function. • https://bugzilla.openanolis.cn/show_bug.cgi?id=8153 https://access.redhat.com/security/cve/CVE-2024-24859 https://bugzilla.redhat.com/show_bug.cgi?id=2298817 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2024-24860 – Race condition vulnerability in Linux kernel bluetooth driver in {min,max}_key_size_set()
https://notcve.org/view.php?id=CVE-2024-24860
A race condition was found in the Linux kernel's bluetooth device driver in {min,max}_key_size_set() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue. Se encontró una condición de ejecución en el controlador del dispositivo Bluetooth del kernel de Linux en la función {min,max}_key_size_set(). Esto puede provocar un problema de desreferencia de puntero nulo, lo que posiblemente provoque un pánico en el kernel o un problema de denegación de servicio. • https://bugzilla.openanolis.cn/show_bug.cgi?id=8151 https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-476: NULL Pointer Dereference •
CVE-2024-24861 – Race condition vulnerability in Linux kernel media/xc4000 xc4000_get_frequency()
https://notcve.org/view.php?id=CVE-2024-24861
A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000 xc4000_get_frequency() function. This can result in return value overflow issue, possibly leading to malfunction or denial of service issue. Se encontró una condición de ejecución en el controlador de dispositivo media/xc4000 del kernel de Linux en la función xc4000 xc4000_get_frequency(). Esto puede provocar un problema de desbordamiento del valor de retorno, lo que posiblemente provoque un mal funcionamiento o un problema de denegación de servicio. • https://bugzilla.openanolis.cn/show_bug.cgi?id=8150 https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •