What versions of the Linux kernel are affected by CVE-2024-56605?

CVE-2024-56605 affects Linux kernel versions prior to 5.4.287 and versions between 5.5 and 5.10.231, 5.11 and 5.15.174, 5.16 and 6.1.120, 6.2 and 6.6.66, and 6.7 and 6.12.5.

What is the severity of CVE-2024-56605?

CVE-2024-56605 has not been assigned a specific severity score yet, but it is essential to evaluate its impact based on the context of your environment.

How do I fix CVE-2024-56605?

To fix CVE-2024-56605, update your Linux kernel to a version that addresses the vulnerability.

What type of vulnerability is CVE-2024-56605?

CVE-2024-56605 is a vulnerability related to the Bluetooth L2CAP subsystem in the Linux kernel.

What impact can CVE-2024-56605 have on my system?

CVE-2024-56605 could potentially lead to resource leaks or unstable behavior if not addressed.

Vulnerability/
CVE-2024-56605

high

7.8

CWE

416

27/12/2024

20/1/2025

CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()

First published: Fri Dec 27 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() bt_sock_alloc() allocates the sk object and attaches it to the provided sock object. On error l2cap_sock_alloc() frees the sk object, but the dangling pointer is still attached to the sock object, which may create use-after-free in other code.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	<5.4.287
Linux Kernel	>=5.5<5.10.231
Linux Kernel	>=5.11<5.15.174
Linux Kernel	>=5.16<6.1.120
Linux Kernel	>=6.2<6.6.66
Linux Kernel	>=6.7<6.12.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What versions of the Linux kernel are affected by CVE-2024-56605?
CVE-2024-56605 affects Linux kernel versions prior to 5.4.287 and versions between 5.5 and 5.10.231, 5.11 and 5.15.174, 5.16 and 6.1.120, 6.2 and 6.6.66, and 6.7 and 6.12.5.
What is the severity of CVE-2024-56605?
CVE-2024-56605 has not been assigned a specific severity score yet, but it is essential to evaluate its impact based on the context of your environment.
How do I fix CVE-2024-56605?
To fix CVE-2024-56605, update your Linux kernel to a version that addresses the vulnerability.
What type of vulnerability is CVE-2024-56605?
CVE-2024-56605 is a vulnerability related to the Bluetooth L2CAP subsystem in the Linux kernel.
What impact can CVE-2024-56605 have on my system?
CVE-2024-56605 could potentially lead to resource leaks or unstable behavior if not addressed.

agent/title
agent/references
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
agent/remedy
agent/severity
agent/softwarecombine
agent/source
agent/tags
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
version/linux kernel/5.5
version/linux kernel/5.11
version/linux kernel/5.16
version/linux kernel/6.2
version/linux kernel/6.7

Frequently Asked Questions

What versions of the Linux kernel are affected by CVE-2024-56605?
CVE-2024-56605 affects Linux kernel versions prior to 5.4.287 and versions between 5.5 and 5.10.231, 5.11 and 5.15.174, 5.16 and 6.1.120, 6.2 and 6.6.66, and 6.7 and 6.12.5.
What is the severity of CVE-2024-56605?
CVE-2024-56605 has not been assigned a specific severity score yet, but it is essential to evaluate its impact based on the context of your environment.
How do I fix CVE-2024-56605?
To fix CVE-2024-56605, update your Linux kernel to a version that addresses the vulnerability.
What type of vulnerability is CVE-2024-56605?
CVE-2024-56605 is a vulnerability related to the Bluetooth L2CAP subsystem in the Linux kernel.
What impact can CVE-2024-56605 have on my system?
CVE-2024-56605 could potentially lead to resource leaks or unstable behavior if not addressed.

CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What versions of the Linux kernel are affected by CVE-2024-56605?

What is the severity of CVE-2024-56605?

How do I fix CVE-2024-56605?

What type of vulnerability is CVE-2024-56605?

What impact can CVE-2024-56605 have on my system?

Company

Resources

Contact

Frequently Asked Questions

What versions of the Linux kernel are affected by CVE-2024-56605?

What is the severity of CVE-2024-56605?

How do I fix CVE-2024-56605?

What type of vulnerability is CVE-2024-56605?

What impact can CVE-2024-56605 have on my system?