We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-53144

Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE



Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE This aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4 ("Bluetooth: Always request for user confirmation for Just Works") always request user confirmation with confirm_hint set since the likes of bluetoothd have dedicated policy around JUST_WORKS method (e.g. main.conf:JustWorksRepairing). CVE: CVE-2024-8805

Reserved 2024-11-19 | Published 2024-12-17 | Updated 2024-12-19 | Assigner Linux

Product status

Default status
unaffected

ba15a58b179ed76a7e887177f2b06de12c58ec8f before d17c631ba04e960eb6f8728b10d585de20ac4f71
affected

ba15a58b179ed76a7e887177f2b06de12c58ec8f before 830c03e58beb70b99349760f822e505ecb4eeb7e
affected

ba15a58b179ed76a7e887177f2b06de12c58ec8f before ad7adfb95f64a761e4784381e47bee1a362eb30d
affected

ba15a58b179ed76a7e887177f2b06de12c58ec8f before 5291ff856d2c5177b4fe9c18828312be30213193
affected

ba15a58b179ed76a7e887177f2b06de12c58ec8f before b25e11f978b63cb7857890edb3a698599cddb10e
affected

Default status
affected

3.16
affected

Any version before 3.16
unaffected

6.1.113
unaffected

6.6.55
unaffected

6.10.14
unaffected

6.11.3
unaffected

6.12
unaffected

References

git.kernel.org/...c/d17c631ba04e960eb6f8728b10d585de20ac4f71

git.kernel.org/...c/830c03e58beb70b99349760f822e505ecb4eeb7e

git.kernel.org/...c/ad7adfb95f64a761e4784381e47bee1a362eb30d

git.kernel.org/...c/5291ff856d2c5177b4fe9c18828312be30213193

git.kernel.org/...c/b25e11f978b63cb7857890edb3a698599cddb10e

www.zerodayinitiative.com/advisories/ZDI-24-1229/

cve.org (CVE-2024-53144)

nvd.nist.gov (CVE-2024-53144)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-53144

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.