Bluetooth Headset Connectivity Flaw in Ubuntu's PulseAudio Implementation
CVE-2024-11586

Currently unrated

Key Information:

Vendor: Ubuntu
Vendor: CVE Published:; 23 November 2024

What is CVE-2024-11586?

A significant vulnerability exists in the PulseAudio implementation on Ubuntu systems, which can be exploited when a Bluetooth headset is connected. When an attacker utilizes a malicious program, it has the potential to cause a crash in the audio service, disrupting sound playback and potentially leading to a denial of service. Users of affected Ubuntu versions should be aware of this vulnerability and remain vigilant about software updates and Bluetooth device connections to mitigate risks associated with this issue.

References

https://bugs.launchpad.net/ubuntu/+source/pulseaudio/+bug...

https://www.cve.org/CVERecord?id=CVE-2024-11586

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 23, 2024