Vulnerabilities > CVE-2024-22099 - NULL Pointer Dereference vulnerability in Linux Kernel 2.6.12

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

linux

CWE-476

NVD

Published: 2024-01-25

Updated: 2024-06-27

Summary

NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C. This issue affects Linux kernel: v2.6.12-rc2.

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 2.6.12	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://bugzilla.openanolis.cn/show_bug.cgi?id=7956
https://lists.fedoraproject.org/archives/list/[email protected]/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/
https://lists.fedoraproject.org/archives/list/[email protected]/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html