CVE-2024-57987
MEDIUMLinux Kernel 6.10-6.12.12, 6.13.0-6.13.1, >=6.14 - NULL Pointer Dereference in btrtl_setup_realtek
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: check for NULL in btrtl_setup_realtek() If insert an USB dongle which chip is not maintained in ic_id_table, it will hit the NULL point accessed. Add a null point check to avoid the Kernel Oops.
References (3)
Core 3
Core References
Mailing List, Patch
https://git.kernel.org/stable/c/1158ad8e8abb361d4b2aaa010c9af74de20ab82b
Mailing List, Patch
https://git.kernel.org/stable/c/02f9da874e5e4626f81772eacc18967921998a71
Mailing List, Patch
https://git.kernel.org/stable/c/3c15082f3567032d196e8760753373332508c2ca
Scores
CVSS v3
5.5
EPSS
0.0020
EPSS Percentile
9.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-476
Status
published
Products (11)
linux/Kernel
6.10.0 - 6.12.13linux
linux/Kernel
6.13.0 - 6.13.2linux
Linux/Linux
< 6.10
Linux/Linux
6.10
Linux/Linux
6.12.13 - 6.12.*
Linux/Linux
6.13.2 - 6.13.*
Linux/Linux
6.14
Linux/Linux
b39910bb54d9ff696caaed4e83ae92a798cd8bf8 - 02f9da874e5e4626f81772eacc18967921998a71
Linux/Linux
b39910bb54d9ff696caaed4e83ae92a798cd8bf8 - 1158ad8e8abb361d4b2aaa010c9af74de20ab82b
Linux/Linux
b39910bb54d9ff696caaed4e83ae92a798cd8bf8 - 3c15082f3567032d196e8760753373332508c2ca
... and 1 more
Published
Feb 27, 2025
Tracked Since
Feb 18, 2026