Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-35933

HistoryMay 19, 2024 - 11:15 a.m.

CVE-2024-35933

2024-05-1911:15:49

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

cve-2024-35933

linux kernel

bluetooth

btintel

null pointer dereference

hci_cmd_sync_complete

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: btintel: Fix null ptr deref in btintel_read_version

If hci_cmd_sync_complete() is triggered and skb is NULL, then
hdev->req_skb is NULL, which will cause this issue.

References

git.kernel.org/stable/c/006936ecb4edfc3102464044f75858c714e34d28

git.kernel.org/stable/c/22d3053ef05f0b5045e45bd91e7473846261d65e

git.kernel.org/stable/c/68a69bb2ecafaacdb998a87783068fb51736f43b

git.kernel.org/stable/c/86e9b47e8a75c74b1bd83a479979b425c5dc8bd9

git.kernel.org/stable/c/b19fe5eea619d54eea59bb8a37c0f8d00ef0e912

git.kernel.org/stable/c/b79e040910101b020931ba0c9a6b77e81ab7f645

git.kernel.org/stable/c/ec2049fb2b8be3e108fe2ef1f1040f91e72c9990

git.kernel.org/stable/c/ffdca0a62abaf8c41d8d9ea132000fd808de329b

lists.debian.org/debian-lts-announce/2024/06/msg00017.html

lists.debian.org/debian-lts-announce/2024/06/msg00020.html