CVE-2024-26887

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-26887
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26887.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-26887
Downstream
Published
2024-04-17T10:27:41.557Z
Modified
2025-11-20T04:11:47.036431Z
Summary
Bluetooth: btusb: Fix memory leak
Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: btusb: Fix memory leak

This checks if CONFIGDEVCOREDUMP is enabled before attempting to clone the skb and also make sure btmtkprocesscoredump frees the skb passed following the same logic.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0b70151328781a89c89e4cf3fae21fc0e98d869e
Fixed
620b9e60e4b55fa55540ce852a0f3c9e6091dbbc
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0b70151328781a89c89e4cf3fae21fc0e98d869e
Fixed
b10e6f6b160a60b98fb7476028f5a95405bbd725
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0b70151328781a89c89e4cf3fae21fc0e98d869e
Fixed
b08bd8f02a24e2b82fece5ac51dc1c3d9aa6c404
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0b70151328781a89c89e4cf3fae21fc0e98d869e
Fixed
79f4127a502c5905f04da1f20a7bbe07103fb77c

Affected versions

v6.*

v6.5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
v6.7.10
v6.7.2
v6.7.3
v6.7.4
v6.7.5
v6.7.6
v6.7.7
v6.7.8
v6.7.9
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.8.1

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c"
        },
        "digest": {
            "line_hashes": [
                "117989906484738148266789728121963693328",
                "277774970738956591756690620714299298223",
                "123931468389698593982428283080086191174",
                "57206547825319070129103049988960725347",
                "54923278372128133593871178541683104290",
                "124723250982362558713458562390056764212",
                "36206615146446991453339560379971758364",
                "225997160262558736951310017774357445069",
                "265344906931404769036975619507991642667",
                "30377595355011188848477873682862188444"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b10e6f6b160a60b98fb7476028f5a95405bbd725",
        "signature_version": "v1",
        "id": "CVE-2024-26887-15b2d4ca"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c"
        },
        "digest": {
            "line_hashes": [
                "278671478645842971517876256331015018832",
                "177760983823346025991891872283150583712",
                "155441813890757806650247299060572289898",
                "188323246258855291416803558456895557868",
                "331768728714752560135201921856702066648"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79f4127a502c5905f04da1f20a7bbe07103fb77c",
        "signature_version": "v1",
        "id": "CVE-2024-26887-211d1d0b"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c"
        },
        "digest": {
            "line_hashes": [
                "117989906484738148266789728121963693328",
                "277774970738956591756690620714299298223",
                "123931468389698593982428283080086191174",
                "57206547825319070129103049988960725347",
                "54923278372128133593871178541683104290",
                "124723250982362558713458562390056764212",
                "36206615146446991453339560379971758364",
                "225997160262558736951310017774357445069",
                "265344906931404769036975619507991642667",
                "30377595355011188848477873682862188444"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b08bd8f02a24e2b82fece5ac51dc1c3d9aa6c404",
        "signature_version": "v1",
        "id": "CVE-2024-26887-3b744621"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c",
            "function": "btusb_recv_acl_mtk"
        },
        "digest": {
            "length": 413.0,
            "function_hash": "32858589152031307618951487899443842142"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b10e6f6b160a60b98fb7476028f5a95405bbd725",
        "signature_version": "v1",
        "id": "CVE-2024-26887-41f52d6c"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c"
        },
        "digest": {
            "line_hashes": [
                "278671478645842971517876256331015018832",
                "177760983823346025991891872283150583712",
                "155441813890757806650247299060572289898",
                "188323246258855291416803558456895557868",
                "331768728714752560135201921856702066648"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b10e6f6b160a60b98fb7476028f5a95405bbd725",
        "signature_version": "v1",
        "id": "CVE-2024-26887-5f427c54"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c",
            "function": "btusb_recv_acl_mtk"
        },
        "digest": {
            "length": 413.0,
            "function_hash": "32858589152031307618951487899443842142"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@620b9e60e4b55fa55540ce852a0f3c9e6091dbbc",
        "signature_version": "v1",
        "id": "CVE-2024-26887-64758262"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c",
            "function": "btmtk_process_coredump"
        },
        "digest": {
            "length": 869.0,
            "function_hash": "198736011874715759652230865350021518377"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79f4127a502c5905f04da1f20a7bbe07103fb77c",
        "signature_version": "v1",
        "id": "CVE-2024-26887-70dcb432"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c"
        },
        "digest": {
            "line_hashes": [
                "278671478645842971517876256331015018832",
                "177760983823346025991891872283150583712",
                "155441813890757806650247299060572289898",
                "188323246258855291416803558456895557868",
                "331768728714752560135201921856702066648"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b08bd8f02a24e2b82fece5ac51dc1c3d9aa6c404",
        "signature_version": "v1",
        "id": "CVE-2024-26887-9f9b2277"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c",
            "function": "btmtk_process_coredump"
        },
        "digest": {
            "length": 869.0,
            "function_hash": "198736011874715759652230865350021518377"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b08bd8f02a24e2b82fece5ac51dc1c3d9aa6c404",
        "signature_version": "v1",
        "id": "CVE-2024-26887-be6c1849"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c",
            "function": "btusb_recv_acl_mtk"
        },
        "digest": {
            "length": 413.0,
            "function_hash": "32858589152031307618951487899443842142"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b08bd8f02a24e2b82fece5ac51dc1c3d9aa6c404",
        "signature_version": "v1",
        "id": "CVE-2024-26887-c031e65f"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c",
            "function": "btusb_recv_acl_mtk"
        },
        "digest": {
            "length": 413.0,
            "function_hash": "32858589152031307618951487899443842142"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79f4127a502c5905f04da1f20a7bbe07103fb77c",
        "signature_version": "v1",
        "id": "CVE-2024-26887-c7549f88"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c"
        },
        "digest": {
            "line_hashes": [
                "117989906484738148266789728121963693328",
                "277774970738956591756690620714299298223",
                "123931468389698593982428283080086191174",
                "57206547825319070129103049988960725347",
                "54923278372128133593871178541683104290",
                "124723250982362558713458562390056764212",
                "36206615146446991453339560379971758364",
                "225997160262558736951310017774357445069",
                "265344906931404769036975619507991642667",
                "30377595355011188848477873682862188444"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@620b9e60e4b55fa55540ce852a0f3c9e6091dbbc",
        "signature_version": "v1",
        "id": "CVE-2024-26887-cf186171"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c"
        },
        "digest": {
            "line_hashes": [
                "278671478645842971517876256331015018832",
                "177760983823346025991891872283150583712",
                "155441813890757806650247299060572289898",
                "188323246258855291416803558456895557868",
                "331768728714752560135201921856702066648"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@620b9e60e4b55fa55540ce852a0f3c9e6091dbbc",
        "signature_version": "v1",
        "id": "CVE-2024-26887-e370fcb9"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c",
            "function": "btmtk_process_coredump"
        },
        "digest": {
            "length": 869.0,
            "function_hash": "198736011874715759652230865350021518377"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b10e6f6b160a60b98fb7476028f5a95405bbd725",
        "signature_version": "v1",
        "id": "CVE-2024-26887-e6c3a079"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btusb.c"
        },
        "digest": {
            "line_hashes": [
                "117989906484738148266789728121963693328",
                "277774970738956591756690620714299298223",
                "123931468389698593982428283080086191174",
                "57206547825319070129103049988960725347",
                "54923278372128133593871178541683104290",
                "124723250982362558713458562390056764212",
                "36206615146446991453339560379971758364",
                "225997160262558736951310017774357445069",
                "265344906931404769036975619507991642667",
                "30377595355011188848477873682862188444"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79f4127a502c5905f04da1f20a7bbe07103fb77c",
        "signature_version": "v1",
        "id": "CVE-2024-26887-e798228a"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/bluetooth/btmtk.c",
            "function": "btmtk_process_coredump"
        },
        "digest": {
            "length": 869.0,
            "function_hash": "198736011874715759652230865350021518377"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@620b9e60e4b55fa55540ce852a0f3c9e6091dbbc",
        "signature_version": "v1",
        "id": "CVE-2024-26887-fc928bac"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.0
Fixed
6.6.23
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.11
Type
ECOSYSTEM
Events
Introduced
6.8.0
Fixed
6.8.2