Add new batch of CVEs assigned

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
commit: 509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree: f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26801
parent: e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2024-26801 b/active/CVE-2024-26801
new file mode 100644
index 00000000..e16f9310
--- /dev/null
+++ b/active/CVE-2024-26801
@@ -0,0 +1,16 @@
+Description: Bluetooth: Avoid potential use-after-free in hci_error_reset
+References:
+Notes:
+ carnil> Introduced in c7741d16a57c ("Bluetooth: Perform a power cycle when receiving
+ carnil> hardware error event"). Vulnerable versions: 4.0-rc1.
+Bugs:
+upstream: released (6.8-rc7) [2449007d3f73b2842c9734f45f0aadb522daf592]
+6.7-upstream-stable: released (6.7.9) [dd594cdc24f2e48dab441732e6dfcafd6b0711d1]
+6.6-upstream-stable: released (6.6.21) [2ab9a19d896f5a0dd386e1f001c5309bc35f433b]
+6.1-upstream-stable: released (6.1.81) [45085686b9559bfbe3a4f41d3d695a520668f5e1]
+5.10-upstream-stable: released (5.10.212) [6dd0a9dfa99f8990a08eb8fdd8e79bee31c7d8e2]
+4.19-upstream-stable: released (4.19.309) [e0b278650f07acf2e0932149183458468a731c03]
+sid: released (6.7.9-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
commit	509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree	f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26801
parent	e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)