CVE-2024-56604

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-56604

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-56604.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-56604

Downstream

BELL-CVE-2024-56604

DLA-4076-1

OESA-2025-1032

OESA-2025-1033

OESA-2025-1035

OESA-2025-1036

OESA-2025-1037

OESA-2025-1112

RHSA-2025:6966

SUSE-SU-2025:0117-1

SUSE-SU-2025:0152-1

SUSE-SU-2025:0153-1

SUSE-SU-2025:0154-1

SUSE-SU-2025:0201-1

SUSE-SU-2025:0201-2

SUSE-SU-2025:0202-1

SUSE-SU-2025:0203-1

SUSE-SU-2025:0229-1

SUSE-SU-2025:0230-1

SUSE-SU-2025:0231-1

SUSE-SU-2025:0236-1

SUSE-SU-2025:0289-1

UBUNTU-CVE-2024-56604

USN-7379-1

USN-7381-1

USN-7382-1

USN-7449-1

USN-7449-2

USN-7450-1

USN-7451-1

USN-7452-1

USN-7453-1

USN-7468-1

USN-7523-1

USN-7524-1

Related

Published

2024-12-27T15:15:19Z

Modified

2025-08-09T19:01:27Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcommsockalloc()

btsockalloc() attaches allocated sk object to the provided sock object. If rfcommdlcalloc() fails, we release the sk object, but leave the dangling pointer in the sock object, which may cause use-after-free.

Fix this by swapping calls to btsockalloc() and rfcommdlcalloc().

References

Affected packages