5.5

CVE-2026-45834

Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb()

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb()

Add the same NULL guard already present in
l2cap_sock_resume_cb() and l2cap_sock_ready_cb().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.1 < 5.10.258
LinuxLinux Kernel Version >= 5.11 < 5.15.209
LinuxLinux Kernel Version >= 5.16 < 6.1.175
LinuxLinux Kernel Version >= 6.2 < 6.6.140
LinuxLinux Kernel Version >= 6.7 < 6.12.88
LinuxLinux Kernel Version >= 6.13 < 6.18.30
LinuxLinux Kernel Version >= 6.19 < 7.0.7
LinuxLinux Kernel Version7.1 Updaterc1
LinuxLinux Kernel Version7.1 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.024
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/5105f3e6b2df619c635b5f6a49fac131a36c7952
Patch
https://git.kernel.org/stable/c/c88c185ae0a1067823661b220aeea613df2c127b
Patch
https://git.kernel.org/stable/c/1810e42ff6716f320c7269d5850eca48b07b7427
Patch
https://git.kernel.org/stable/c/a2dcf1a61d056aef15b63c6eae9441344d624389
Patch
https://git.kernel.org/stable/c/2ff1a41a912de8517b4482e946dd951b7d80edbf
Patch
https://git.kernel.org/stable/c/0c17c8832562b2aac288e89cefd0f46074f54bcb
Patch
https://git.kernel.org/stable/c/1b1c0da227bf63479bac9982fc8d12df9aaea0fb
Patch
https://git.kernel.org/stable/c/85426e97dc72f2088ba6d27e74cd58c3fbd43e31
Patch