Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() bt_sock_alloc() allocates the sk object and attaches it to the provided sock object. On error l2cap_sock_alloc() frees the sk object, but the dangling pointer is still attached to the sock object, which may create use-after-free in other code.

INFO

Published Date :

2024-12-27T14:51:10.344Z

Last Modified :

2026-01-05T10:56:13.204Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-56605 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-56605.

URL Resource
https://git.kernel.org/stable/c/61686abc2f3c2c67822aa23ce6f160467ec83d35 cve-icon cve-icon
https://git.kernel.org/stable/c/7c4f78cdb8e7501e9f92d291a7d956591bf73be9 cve-icon cve-icon
https://git.kernel.org/stable/c/8ad09ddc63ace3950ac43db6fbfe25b40f589dd6 cve-icon cve-icon
https://git.kernel.org/stable/c/a8677028dd5123e5e525b8195483994d87123de4 cve-icon cve-icon
https://git.kernel.org/stable/c/bb2f2342a6ddf7c04f9aefbbfe86104cd138e629 cve-icon cve-icon
https://git.kernel.org/stable/c/daa13175a6dea312a76099066cb4cbd4fc959a84 cve-icon cve-icon
https://git.kernel.org/stable/c/f6ad641646b67f29c7578dcd6c25813c7dcbf51e cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024122704-CVE-2024-56605-d424@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-56605 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-56605 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact