ГлавнаяУязвимости → CVE-2024-36033
7.1высокая

CVE-2024-36033

→ есть в БДУ: BDU:2024-10710 (на русском)
Описание (на английском; русское — в БДУ выше)

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: fix info leak when fetching board id Add the missing sanity check when fetching the board id to avoid leaking slab data when later requesting the firmware.

Затрагиваемое ПО
Linux Linux kernel
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Источники
https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645ddhttps://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08cebhttps://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645ddhttps://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209