Security tracker / CVE-2024-50029

CVE-2024-50029

Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in e07a06b4eb41 ("Bluetooth: Convert SCO configure_datapath to
 carnil> hci_sync"). Vulnerable versions: 6.1-rc1.

Bugs

Status

Branch	Status
upstream	released (6.12-rc3) [18fd04ad856df07733f5bb07e7f7168e7443d393]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.11-upstream-stable	released (6.11.4) [98ccd44002d88cbf4edfc4480df532a3da5a013e]
6.6-upstream-stable	released (6.6.57) [867639300759e3e1c5b1e1a5ff89231f263a32a7]
6.1-upstream-stable	needed
5.10-upstream-stable	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.11.4-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	needed
5.10-bullseye-security	N/A "Vulnerable code not present"