mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
964 B
964 B
CVE-2024-56604
Description
In the Linux kernel, the following vulnerability has been resolved:Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()bt_sock_alloc() attaches allocated sk object to the provided sock object.If rfcomm_dlc_alloc() fails, we release the sk object, but leave thedangling pointer in the sock object, which may cause use-after-free.Fix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().
POC
Reference
No PoCs from references.