{"vulnerability": "CVE-2024-3585", "sightings": [{"uuid": "a110b7ee-aebf-41f6-b927-280f9b401f26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-35850", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14752", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35850\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev setup\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nsetup() is called for a non-serdev controller.\n\ud83d\udccf Published: 2024-05-17T14:47:28.139Z\n\ud83d\udccf Modified: 2025-05-04T09:06:48.863Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/67459f1a707aae6d590454de07956c2752e21ea4\n2. https://git.kernel.org/stable/c/bec4d4c6fa5c6526409f582e4f31144e20c86c21\n3. https://git.kernel.org/stable/c/7ddb9de6af0f1c71147785b12fd7c8ec3f06cc86", "creation_timestamp": "2025-05-04T09:18:06.000000Z"}, {"uuid": "5bb23e35-ec6f-4855-801d-ccd4aa41d3c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-35851", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14751", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35851\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev suspend\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nwakeup() is called for a non-serdev controller during suspend.\n\nJust return true for now to restore the original behaviour and address\nthe crash with pre-6.2 kernels, which do not have commit e9b3e5b8c657\n(\"Bluetooth: hci_qca: only assign wakeup with serial port support\") that\ncauses the crash to happen already at setup() time.\n\ud83d\udccf Published: 2024-05-17T14:47:28.787Z\n\ud83d\udccf Modified: 2025-05-04T09:06:50.045Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/52f9041deaca3fc5c40ef3b9cb943993ec7d2489\n2. https://git.kernel.org/stable/c/e60502b907be350c518819297b565007a94c706d\n3. https://git.kernel.org/stable/c/6b47cdeb786c38e4174319218db3fa6d7b4bba88\n4. https://git.kernel.org/stable/c/b64092d2f108f0cd1d7fd7e176f5fb2a67a2f189\n5. https://git.kernel.org/stable/c/73e87c0a49fda31d7b589edccf4c72e924411371", "creation_timestamp": "2025-05-04T09:18:05.000000Z"}, {"uuid": "c7244677-1400-4fe1-a205-d3ebc7a74711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-35858", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14750", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35858\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bcmasp: fix memory leak when bringing down interface\n\nWhen bringing down the TX rings we flush the rings but forget to\nreclaimed the flushed packets. This leads to a memory leak since we\ndo not free the dma mapped buffers. This also leads to tx control\nblock corruption when bringing down the interface for power\nmanagement.\n\ud83d\udccf Published: 2024-05-17T14:47:33.401Z\n\ud83d\udccf Modified: 2025-05-04T09:07:00.291Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/09040baf8779ad880e0e0d0ea10e57aa929ef3ab\n2. https://git.kernel.org/stable/c/2389ad1990163d29cba5480d693b4c2e31cc545c\n3. https://git.kernel.org/stable/c/9f898fc2c31fbf0ac5ecd289f528a716464cb005", "creation_timestamp": "2025-05-04T09:18:02.000000Z"}]}