CVE-2024-26959

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-26959
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26959.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-26959
Downstream
Published
2024-05-01T06:15:12Z
Modified
2024-11-21T09:03:29Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: btnxpuart: Fix btnxpuart_close

Fix scheduling while atomic BUG in btnxpuart_close(), properly purge the transmit queue and free the receive skb.

[ 10.973809] BUG: scheduling while atomic: kworker/u9:0/80/0x00000002 ... [ 10.980740] CPU: 3 PID: 80 Comm: kworker/u9:0 Not tainted 6.8.0-rc7-0.0.0-devel-00005-g61fdfceacf09 #1 [ 10.980751] Hardware name: Toradex Verdin AM62 WB on Dahlia Board (DT) [ 10.980760] Workqueue: hci0 hcipoweroff [bluetooth] [ 10.981169] Call trace: ... [ 10.981363] uartupdatemctrl+0x58/0x78 [ 10.981373] uartdtrrts+0x104/0x114 [ 10.981381] ttyportshutdown+0xd4/0xdc [ 10.981396] ttyportclose+0x40/0xbc [ 10.981407] uartclose+0x34/0x9c [ 10.981414] ttyportclose+0x50/0x94 [ 10.981430] serdevdeviceclose+0x40/0x50 [ 10.981442] btnxpuartclose+0x24/0x98 [btnxpuart] [ 10.981469] hcidevclosesync+0x2d8/0x718 [bluetooth] [ 10.981728] hcidevdoclose+0x2c/0x70 [bluetooth] [ 10.981862] hcipower_off+0x20/0x64 [bluetooth]

References

Affected packages

Debian:13 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.7.12-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}