CVE-2021-47079

MEDIUM

Linux Kernel 5.12-5.12.6 - NULL Pointer Dereference in ideapad-laptop dytc_cql_command

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: platform/x86: ideapad-laptop: fix a NULL pointer dereference The third parameter of dytc_cql_command should not be NULL since it will be dereferenced immediately.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/beab753fe3b4e087411a850a64c6cd748544d8a1

Patch

https://git.kernel.org/stable/c/ff67dbd554b2aaa22be933eced32610ff90209dd

Scores

CVSS v3 5.5

EPSS 0.0019

EPSS Percentile 9.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (8)

Linux/Linux < 5.12

Linux/Linux 5.12

Linux/Linux 5.12.7 - 5.12.*

Linux/Linux 5.13

Linux/Linux ff36b0d953dc4cbc40a72945920ff8e805f1b0da - beab753fe3b4e087411a850a64c6cd748544d8a1

Linux/Linux ff36b0d953dc4cbc40a72945920ff8e805f1b0da - ff67dbd554b2aaa22be933eced32610ff90209dd

linux/linux_kernel 5.13 rc1 (2 CPE variants)

linux/linux_kernel 5.12 - 5.12.7

Published Mar 01, 2024

Tracked Since Feb 18, 2026