CVE-2022-49139

This event is just specified for SCO and eSCO link types. On the reception of a HCISynchronousConnection_Complete for a BDADDR of an existing LE connection, LE link type and a status that triggers the second case of the packet processing a NULL pointer dereference happens, as conn->link is NULL.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49139.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

efc7688b557dd1be10eead7399b315efcb1dbc74

Fixed

1c1291a84e94f6501644634c97544bb8291e9a1a

Fixed

0f9db1209f59844839175b5b907d3778cafde93d

Fixed

c1aa0dd52db4ce888be0bd820c3fa918d350ca0b

Fixed

f61c23e73dc653b957781066abfa8105c3fa3f5b

Fixed

3afee2118132e93e5f6fa636dfde86201a860ab3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49139.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.30

Fixed

5.4.231

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.167

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.92

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.17.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49139.json"