5.5

CVE-2021-47257

net: ieee802154: fix null deref in parse dev addr

In the Linux kernel, the following vulnerability has been resolved:

net: ieee802154: fix null deref in parse dev addr

Fix a logic error that could result in a null deref if the user sets
the mode incorrectly for the given addr type.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.9.274
LinuxLinux Kernel Version >= 4.10 < 4.14.238
LinuxLinux Kernel Version >= 4.15 < 4.19.196
LinuxLinux Kernel Version >= 4.20 < 5.4.127
LinuxLinux Kernel Version >= 5.5 < 5.10.45
LinuxLinux Kernel Version >= 5.11 < 5.12.12
LinuxLinux Kernel Version5.13 Updaterc1
LinuxLinux Kernel Version5.13 Updaterc2
LinuxLinux Kernel Version5.13 Updaterc3
LinuxLinux Kernel Version5.13 Updaterc4
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.13
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/1f95741981c899c4724647291fec5faa3c777185
Patch
https://git.kernel.org/stable/c/5f728ec65485625e30f46e5b4917ff023ad29ea0
Patch
https://git.kernel.org/stable/c/9fdd04918a452980631ecc499317881c1d120b70
Patch
https://git.kernel.org/stable/c/c6998ccfefa652bac3f9b236821e392af43efa1e
Patch
https://git.kernel.org/stable/c/c7836de2cadd88bc2f20f2c5a3d4ef4c73aef627
Patch
https://git.kernel.org/stable/c/d0f47648b87b6d5f204cb7f3cbce6d36dab85a67
Patch
https://git.kernel.org/stable/c/fdd51e34f45311ab6e48d2147cbc2904731b9993
Patch