CVE-2024-35856

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-35856
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-35856.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-35856
Downstream
Related
Published
2024-05-17T15:15:22Z
Modified
2025-08-09T20:01:27Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: btusb: mediatek: Fix double free of skb in coredump

hcidevcdappend() would free the skb on error so the caller don't have to free it again otherwise it would cause the double free of skb.

Reported-by : Dan Carpenter dan.carpenter@linaro.org

References

Affected packages