CVE-2024-22099

medium

Description

NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C. This issue affects Linux kernel: v2.6.12-rc2.

References

https://thecyberexpress.com/linux-kernel-vulnerabilitie

https://lists.fedoraproject.org/archives/list/[email protected]/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/

https://lists.fedoraproject.org/archives/list/[email protected]/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

https://bugzilla.openanolis.cn/show_bug.cgi?id=7956

Details

Source: Mitre, NVD

Published: 2024-01-25

Updated: 2024-06-27

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium