{"uuid": "5bb23e35-ec6f-4855-801d-ccd4aa41d3c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-35851", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14751", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35851\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev suspend\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nwakeup() is called for a non-serdev controller during suspend.\n\nJust return true for now to restore the original behaviour and address\nthe crash with pre-6.2 kernels, which do not have commit e9b3e5b8c657\n(\"Bluetooth: hci_qca: only assign wakeup with serial port support\") that\ncauses the crash to happen already at setup() time.\n\ud83d\udccf Published: 2024-05-17T14:47:28.787Z\n\ud83d\udccf Modified: 2025-05-04T09:06:50.045Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/52f9041deaca3fc5c40ef3b9cb943993ec7d2489\n2. https://git.kernel.org/stable/c/e60502b907be350c518819297b565007a94c706d\n3. https://git.kernel.org/stable/c/6b47cdeb786c38e4174319218db3fa6d7b4bba88\n4. https://git.kernel.org/stable/c/b64092d2f108f0cd1d7fd7e176f5fb2a67a2f189\n5. https://git.kernel.org/stable/c/73e87c0a49fda31d7b589edccf4c72e924411371", "creation_timestamp": "2025-05-04T09:18:05.000000Z"}