CVE-2024-35856

HIGH7.8

Bluetooth: btusb: mediatek: Fix double free of skb in coredump

Published May 17, 2024

Modified 8 months ago

No fix available

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: btusb: mediatek: Fix double free of skb in coredump

hci_devcd_append() would free the skb on error so the caller don't have to free it again otherwise it would cause the double free of skb.

Reported-by : Dan Carpenter dan.carpenter@linaro.org

CVSS v3.1

7.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

7.8/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

PublishedMay 17, 2024

ModifiedMay 4, 2025

CVE-2024-35856 | Mondoo Vulnerability Intelligence