Bugzilla – Bug 1225843
VUL-0: CVE-2024-36942: kernel: Bluetooth: qca: fix firmware check error path
Last modified: 2024-06-12 11:57:18 UTC
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: fix firmware check error path A recent commit fixed the code that parses the firmware files before downloading them to the controller but introduced a memory leak in case the sanity checks ever fail. Make sure to free the firmware buffer before returning on errors. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-36942 https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-36942.mbox https://git.kernel.org/stable/c/580bcd6bf24f9975f97d81d5ef1b64cca9240df9 https://git.kernel.org/stable/c/064688d70c33bb5b49dde6e972b9379a8b045d8a https://git.kernel.org/stable/c/7bcba557d5c37cd09ecd5abbe7d50deb86c36d3f https://git.kernel.org/stable/c/d1f768214320852766a60a815a0be8f14fba0cc3 https://git.kernel.org/stable/c/40d442f969fb1e871da6fca73d3f8aef1f888558 https://www.cve.org/CVERecord?id=CVE-2024-36942 https://bugzilla.redhat.com/show_bug.cgi?id=2284472
./scripts/check-kernel-fix -f 2e4edfa1e2bd821a317e7d006517dcf2f3fac68d CVE-2024-36942 40d442f969fb ("Bluetooth: qca: fix firmware check error path") merged v6.9~14^2~22^2 Fixes: fatal: ambiguous argument 'f905ae0be4b7': unknown revision or path not in the working tree. Use '--' to separate paths from revisions, like this: 'git <command> [<revision>...] -- [<file>...]' merged Could not get sha1 for f905ae0be4b7. Skipping. Fixes: 2e4edfa1e2bd ("Bluetooth: qca: add missing firmware sanity checks") merged v6.9~14^2~22^2~8 Security fix for CVE-2024-36942 bsc#1225843 with CVSS 4.4 Experts candidates: tiwai@suse.de oneukum@suse.de .............................. Nothing to be done.
All done, closing.