CVE-2024-26801

Bluetooth: Avoid potential use-after-free in hci_error_reset

References

Notes

 carnil> Introduced in c7741d16a57c ("Bluetooth: Perform a power cycle when receiving
 carnil> hardware error event"). Vulnerable versions: 4.0-rc1.

Bugs

Status

Branch Status
4.19-buster-security needed
4.19-upstream-stable released (4.19.309) [e0b278650f07acf2e0932149183458468a731c03]
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.212) [6dd0a9dfa99f8990a08eb8fdd8e79bee31c7d8e2]
6.1-bookworm-security released (6.1.82-1)
6.1-upstream-stable released (6.1.81) [45085686b9559bfbe3a4f41d3d695a520668f5e1]
6.6-upstream-stable released (6.6.21) [2ab9a19d896f5a0dd386e1f001c5309bc35f433b]
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.7.9-1)
upstream released (6.8-rc7) [2449007d3f73b2842c9734f45f0aadb522daf592]