{"id":"USN-8178-1","summary":"ofono vulnerabilities","details":"It was discovered that oFono incorrectly handled crafted responses\nfrom AT commands. An attacker could possibly use this issue to crash\nthe program, resulting in a denial of service or arbitrary code\nexecution. (CVE-2024-7538, CVE-2024-7539, CVE-2024-7540, CVE-2024-7541,\nCVE-2024-7542)\n\nLucas Leong discovered that oFono incorrectly handled crafted input.\nAn attacker could possibly use this issue to crash the program,\nresulting in a denial of service or arbitrary code execution.\n(CVE-2024-7543, CVE-2024-7544, CVE-2024-7545, CVE-2024-7546,\nCVE-2024-7547)","modified":"2026-04-24T10:25:06.683767Z","published":"2026-04-16T15:55:09Z","related":["UBUNTU-CVE-2024-7538","UBUNTU-CVE-2024-7539","UBUNTU-CVE-2024-7540","UBUNTU-CVE-2024-7541","UBUNTU-CVE-2024-7542","UBUNTU-CVE-2024-7543","UBUNTU-CVE-2024-7544","UBUNTU-CVE-2024-7545","UBUNTU-CVE-2024-7546","UBUNTU-CVE-2024-7547"],"upstream":["CVE-2024-7538","CVE-2024-7539","CVE-2024-7540","CVE-2024-7541","CVE-2024-7542","CVE-2024-7543","CVE-2024-7544","CVE-2024-7545","CVE-2024-7546","CVE-2024-7547","UBUNTU-CVE-2024-7538","UBUNTU-CVE-2024-7539","UBUNTU-CVE-2024-7540","UBUNTU-CVE-2024-7541","UBUNTU-CVE-2024-7542","UBUNTU-CVE-2024-7543","UBUNTU-CVE-2024-7544","UBUNTU-CVE-2024-7545","UBUNTU-CVE-2024-7546","UBUNTU-CVE-2024-7547"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8178-1"}],"affected":[{"package":{"name":"ofono","ecosystem":"Ubuntu:Pro:16.04:LTS","purl":"pkg:deb/ubuntu/ofono@1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm3?arch=source&distro=esm-apps/xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm3"}]}],"versions":["1.17.bzr6904+15.10.20150928.1-0ubuntu1","1.17.bzr6906+16.04.20151119-0ubuntu1","1.17.bzr6908+16.04.20151203-0ubuntu1","1.17.bzr6910+16.04.20160115.3-0ubuntu1","1.17.bzr6912+16.04.20160314.3-0ubuntu1","1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm1","1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm2"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm3","binary_name":"ofono"},{"binary_version":"1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm3","binary_name":"ofono-scripts"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8178-1.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:16.04:LTS"}}},{"package":{"name":"ofono","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/ofono@1.21-1ubuntu1+esm3?arch=source&distro=esm-apps/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.21-1ubuntu1+esm3"}]}],"versions":["1.17.bzr6921+16.10.20160819.6-0ubuntu1","1.21-1ubuntu1","1.21-1ubuntu1+esm1","1.21-1ubuntu1+esm2"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"1.21-1ubuntu1+esm3","binary_name":"ofono"},{"binary_version":"1.21-1ubuntu1+esm3","binary_name":"ofono-scripts"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8178-1.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:18.04:LTS"}}},{"package":{"name":"ofono","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/ofono@1.31-2ubuntu1+esm3?arch=source&distro=esm-apps/focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.31-2ubuntu1+esm3"}]}],"versions":["1.21-1ubuntu1","1.31-2ubuntu1","1.31-2ubuntu1+esm1","1.31-2ubuntu1+esm2"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"1.31-2ubuntu1+esm3","binary_name":"ofono"},{"binary_version":"1.31-2ubuntu1+esm3","binary_name":"ofono-scripts"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8178-1.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:20.04:LTS"}}},{"package":{"name":"ofono","ecosystem":"Ubuntu:Pro:22.04:LTS","purl":"pkg:deb/ubuntu/ofono@1.31-3ubuntu1.2+esm1?arch=source&distro=esm-apps/jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.31-3ubuntu1.2+esm1"}]}],"versions":["1.31-3ubuntu1","1.31-3ubuntu1.1","1.31-3ubuntu1.2"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"1.31-3ubuntu1.2+esm1","binary_name":"ofono"},{"binary_version":"1.31-3ubuntu1.2+esm1","binary_name":"ofono-scripts"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8178-1.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:22.04:LTS"}}},{"package":{"name":"ofono","ecosystem":"Ubuntu:Pro:24.04:LTS","purl":"pkg:deb/ubuntu/ofono@1.31-3ubuntu3.24.04.2+esm1?arch=source&distro=esm-apps/noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.31-3ubuntu3.24.04.2+esm1"}]}],"versions":["1.31-3ubuntu1","1.31-3ubuntu2","1.31-3ubuntu3","1.31-3ubuntu3.24.04.1","1.31-3ubuntu3.24.04.2"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"1.31-3ubuntu3.24.04.2+esm1","binary_name":"ofono"},{"binary_version":"1.31-3ubuntu3.24.04.2+esm1","binary_name":"ofono-scripts"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8178-1.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:24.04:LTS"}}}],"schema_version":"1.7.5"}