NULL pointer deference in rfcomm_check_security in Linux kernel
CVE-2024-22099

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux Kernel
Vendor: CVE Published:; 25 January 2024

Summary

NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C.

This issue affects Linux kernel: v2.6.12-rc2.

Affected Version(s)

Linux kernel Linux v2.6.12-rc2

References

https://bugzilla.openanolis.cn/show_bug.cgi?id=7956

https://lists.fedoraproject.org/archives/list/package-ann...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 25, 2024
Vulnerability Reserved
Jan 15, 2024

Collectors

NVD DatabaseMitre Database

Credit

Yuxuan-Hu <[email protected]>