CVE-2024-24860 | Linux Kernel up to 6.8-rc2 Bluetooth Device min_key_size_set/max_key_size_set race condition

CVE-2024-24860 | Linux Kernel up to 6.8-rc2 Bluetooth Device min_key_size_set/max_key_size_set race condition

A vulnerability was found in Linux Kernel up to 6.8-rc2 and classified as problematic. Affected by this issue is the function min_key_size_set/max_key_size_set of the component Bluetooth Device Handler. The manipulation leads to race condition. This vulnerability is handled as CVE-2024-24860. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.