CVE-2024-26889

Bluetooth: hci_core: Fix possible buffer overflow

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: hci_core: Fix possible buffer overflow

struct hci_dev_info has a fixed size name[8] field so in the event that
hdev->name is bigger than that strcpy would attempt to write past its
size, so this fixes this problem by switching to use strscpy.

En el kernel de Linux, se resolvió la siguiente vulnerabilidad: Bluetooth: hci_core: soluciona un posible desbordamiento del búfer struct hci_dev_info tiene un campo de nombre de tamaño fijo[8], por lo que en caso de que hdev->name sea mayor que strcpy intentaría escribir más allá su tamaño, por lo que esto soluciona este problema cambiando al uso de strscpy.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-04-17 CVE Published
2024-04-18 EPSS Updated
2024-08-08 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (19)

URL	Tag	Source
https://git.kernel.org/stable/c/194ab82c1ea187512ff2f822124bd05b63fc9f76	Vuln. Introduced
https://git.kernel.org/stable/c/b48595f5b1c6e81e06e164e7d2b7a30b1776161e	Vuln. Introduced
https://git.kernel.org/stable/c/ffb060b136dd75a033ced0fc0aed2882c02e8b56	Vuln. Introduced
https://git.kernel.org/stable/c/bbec1724519ecd9c468d1186a8f30b7567175bfb	Vuln. Introduced
https://git.kernel.org/stable/c/a55d53ad5c86aee3f6da50ee73626008997673fa	Vuln. Introduced
https://git.kernel.org/stable/c/dcda165706b9fbfd685898d46a6749d7d397e0c0	Vuln. Introduced
https://git.kernel.org/stable/c/d9ce7d438366431e5688be98d8680336ce0a0f8d	Vuln. Introduced
https://git.kernel.org/stable/c/5558f4312dca43cebfb9a1aab3d632be91bbb736	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/6d5a9d4a7bcbb7534ce45a18a52e7bd23e69d8ac	2024-03-26
https://git.kernel.org/stable/c/54a03e4ac1a41edf8a5087bd59f8241b0de96d3d	2024-03-26
https://git.kernel.org/stable/c/d47e6c1932cee02954ea588c9f09fd5ecefeadfc	2024-03-26
https://git.kernel.org/stable/c/2e845867b4e279eff0a19ade253390470e07e8a1	2024-03-26
https://git.kernel.org/stable/c/68644bf5ec6baaff40fc39b3529c874bfda709bd	2024-03-26
https://git.kernel.org/stable/c/a41c8efe659caed0e21422876bbb6b73c15b5244	2024-03-26
https://git.kernel.org/stable/c/8c28598a2c29201d2ba7fc37539a7d41c264fb10	2024-03-26
https://git.kernel.org/stable/c/2edce8e9a99dd5e4404259d52e754fdc97fb42c2	2024-03-26
https://git.kernel.org/stable/c/81137162bfaa7278785b24c1fd2e9e74f082e8e4	2024-03-06

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.297 < 4.19.311 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.297 < 4.19.311"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.259 < 5.4.273 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.259 < 5.4.273"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.199 < 5.10.214 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.199 < 5.10.214"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.137 < 5.15.153 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.137 < 5.15.153"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.60 < 6.1.83 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.60 < 6.1.83"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.6.23 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.6.23"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.7.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.7.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.8.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.8.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.14.328 Search vendor "Linux" for product "Linux Kernel" and version "4.14.328"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.5.9 Search vendor "Linux" for product "Linux Kernel" and version "6.5.9"		en		Affected