{"id":"USN-6922-1","summary":"linux-nvidia-6.5 vulnerabilities","details":"\nIt was discovered that a race condition existed in the Bluetooth subsystem\nin the Linux kernel when modifying certain settings values through debugfs.\nA privileged local attacker could use this to cause a denial of service.\n(CVE-2024-24857, CVE-2024-24858, CVE-2024-24859)\n\nChenyuan Yang discovered that the Unsorted Block Images (UBI) flash device\nvolume management subsystem did not properly validate logical eraseblock\nsizes in certain situations. An attacker could possibly use this to cause a\ndenial of service (system crash). (CVE-2024-25739)\n","modified":"2026-04-27T16:59:57.818576Z","published":"2024-07-29T09:54:35Z","related":["UBUNTU-CVE-2024-24857","UBUNTU-CVE-2024-24858","UBUNTU-CVE-2024-24859","UBUNTU-CVE-2024-25739"],"upstream":["CVE-2024-24857","CVE-2024-24858","CVE-2024-24859","CVE-2024-25739","UBUNTU-CVE-2024-24857","UBUNTU-CVE-2024-24858","UBUNTU-CVE-2024-24859","UBUNTU-CVE-2024-25739"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-6922-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-24857"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-24858"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-24859"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-25739"}],"affected":[{"package":{"name":"linux-nvidia-6.5","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/linux-nvidia-6.5@6.5.0-1024.25?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.5.0-1024.25"}]}],"versions":["6.5.0-1004.4","6.5.0-1007.7","6.5.0-1013.13","6.5.0-1014.14","6.5.0-1015.15","6.5.0-1018.18","6.5.0-1019.19","6.5.0-1021.22","6.5.0-1022.23","6.5.0-1023.24"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-buildinfo-6.5.0-1024-nvidia-64k","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-headers-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-headers-6.5.0-1024-nvidia-64k","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-image-unsigned-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-image-unsigned-6.5.0-1024-nvidia-64k","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-modules-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-modules-6.5.0-1024-nvidia-64k","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-modules-extra-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-modules-nvidia-fs-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-modules-nvidia-fs-6.5.0-1024-nvidia-64k","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-nvidia-6.5-headers-6.5.0-1024","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-nvidia-6.5-tools-6.5.0-1024","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-nvidia-6.5-tools-host","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-tools-6.5.0-1024-nvidia","binary_version":"6.5.0-1024.25"},{"binary_name":"linux-tools-6.5.0-1024-nvidia-64k","binary_version":"6.5.0-1024.25"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2024-24857","severity":[{"score":"CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:L","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2024-24858","severity":[{"score":"CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2024-24859","severity":[{"score":"CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2024-25739","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6922-1.json"}}],"schema_version":"1.7.5"}