CVE-2024-56605

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-56605

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56605.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-56605

Downstream

BELL-CVE-2024-56605

DEBIAN-CVE-2024-56605

DLA-4075-1

DLA-4076-1

OESA-2025-1033

OESA-2025-1035

OESA-2025-1037

OESA-2025-1078

OESA-2025-1079

OESA-2025-1112

RHSA-2025:6966

SUSE-SU-2025:0117-1

SUSE-SU-2025:0152-1

SUSE-SU-2025:0153-1

SUSE-SU-2025:0154-1

SUSE-SU-2025:0201-1

SUSE-SU-2025:0201-2

SUSE-SU-2025:0202-1

SUSE-SU-2025:0203-1

SUSE-SU-2025:02069-1

SUSE-SU-2025:02070-1

SUSE-SU-2025:02071-1

SUSE-SU-2025:02072-1

SUSE-SU-2025:02075-1

SUSE-SU-2025:02076-1

SUSE-SU-2025:02077-1

SUSE-SU-2025:02095-1

SUSE-SU-2025:02096-1

SUSE-SU-2025:02101-1

SUSE-SU-2025:02106-1

SUSE-SU-2025:02107-1

SUSE-SU-2025:02108-1

SUSE-SU-2025:02110-1

SUSE-SU-2025:02111-1

SUSE-SU-2025:02112-1

SUSE-SU-2025:02113-1

SUSE-SU-2025:02116-1

SUSE-SU-2025:02117-1

SUSE-SU-2025:02124-1

SUSE-SU-2025:02125-1

SUSE-SU-2025:02126-1

SUSE-SU-2025:02127-1

SUSE-SU-2025:02131-1

SUSE-SU-2025:02132-1

SUSE-SU-2025:02134-1

SUSE-SU-2025:02136-1

SUSE-SU-2025:02139-1

SUSE-SU-2025:02140-1

SUSE-SU-2025:02142-1

SUSE-SU-2025:02144-1

SUSE-SU-2025:02145-1

SUSE-SU-2025:02154-1

SUSE-SU-2025:02157-1

SUSE-SU-2025:02161-1

SUSE-SU-2025:02162-1

SUSE-SU-2025:02171-1

SUSE-SU-2025:0229-1

SUSE-SU-2025:0230-1

SUSE-SU-2025:0231-1

SUSE-SU-2025:0236-1

SUSE-SU-2025:0289-1

SUSE-SU-2025:0603-1

SUSE-SU-2025:0784-1

SUSE-SU-2025:0833-1

SUSE-SU-2025:0833-2

SUSE-SU-2025:0834-1

SUSE-SU-2025:0835-1

SUSE-SU-2025:0847-1

SUSE-SU-2025:0853-1

SUSE-SU-2025:0855-1

SUSE-SU-2025:0856-1

SUSE-SU-2025:0867-1

SUSE-SU-2025:0945-1

SUSE-SU-2025:0955-1

SUSE-SU-2025:20165-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20190-1

SUSE-SU-2025:20192-1

SUSE-SU-2025:20248-1

SUSE-SU-2025:20249-1

SUSE-SU-2025:20260-1

SUSE-SU-2025:20270-1

SUSE-SU-2025:20431-1

SUSE-SU-2025:20434-1

SUSE-SU-2025:20435-1

SUSE-SU-2025:20436-1

SUSE-SU-2025:20437-1

SUSE-SU-2025:20438-1

SUSE-SU-2025:20448-1

SUSE-SU-2025:20449-1

SUSE-SU-2025:20450-1

SUSE-SU-2025:20451-1

SUSE-SU-2025:4123-1

Related

Published

2024-12-27T14:51:10.344Z

Modified

2026-03-12T02:14:34.363387Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()

Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate()

btsockalloc() allocates the sk object and attaches it to the provided sock object. On error l2capsockalloc() frees the sk object, but the dangling pointer is still attached to the sock object, which may create use-after-free in other code.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56605.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

49dfbb9129c4edb318578de35cc45c555df37884

Fixed

f6ad641646b67f29c7578dcd6c25813c7dcbf51e

Fixed

daa13175a6dea312a76099066cb4cbd4fc959a84

Fixed

a8677028dd5123e5e525b8195483994d87123de4

Fixed

bb2f2342a6ddf7c04f9aefbbfe86104cd138e629

Fixed

8ad09ddc63ace3950ac43db6fbfe25b40f589dd6

Fixed

61686abc2f3c2c67822aa23ce6f160467ec83d35

Fixed

7c4f78cdb8e7501e9f92d291a7d956591bf73be9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56605.json"