CVE-2022-49139

Опубликовано: 26 фев. 2025

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt

This event is just specified for SCO and eSCO link types. On the reception of a HCI_Synchronous_Connection_Complete for a BDADDR of an existing LE connection, LE link type and a status that triggers the second case of the packet processing a NULL pointer dereference happens, as conn->link is NULL.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 5.4.231 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.5 (включая) до 5.10.167 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.11 (включая) до 5.15.92 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.16 (включая) до 5.17.3 (исключая)

EPSS

Процентиль: 16%

0.00052

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

CVE-2022-49139

CVSS3: 5.5

ubuntu

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt This event is just specified for SCO and eSCO link types. On the reception of a HCI_Synchronous_Connection_Complete for a BDADDR of an existing LE connection, LE link type and a status that triggers the second case of the packet processing a NULL pointer dereference happens, as conn->link is NULL.

CVE-2022-49139

CVSS3: 5.5

redhat

12 месяцев назад

CVE-2022-49139

CVSS3: 5.5

debian

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: B ...

SUSE-SU-2025:01620-1

suse-cvrf

9 месяцев назад

Security update for the Linux Kernel

SUSE-SU-2025:01982-1

suse-cvrf

8 месяцев назад

Security update for the Linux Kernel

EPSS

Процентиль: 16%

0.00052

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476