CVE-2024-57988
MEDIUMLinux Kernel 6.9-6.12.12, 6.13.0-6.13.1, >=6.14 - NULL Pointer Dereference in btbcm_get_board_name()
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name() devm_kstrdup() can return a NULL pointer on failure,but this returned value in btbcm_get_board_name() is not checked. Add NULL check in btbcm_get_board_name(), to handle kernel NULL pointer dereference error.
References (3)
Core 3
Scores
CVSS v3
5.5
EPSS
0.0020
EPSS Percentile
9.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-476
Status
published
Products (11)
linux/Kernel
6.13.0 - 6.13.2linux
linux/Kernel
6.9.0 - 6.12.13linux
Linux/Linux
< 6.9
Linux/Linux
6.12.13 - 6.12.*
Linux/Linux
6.13.2 - 6.13.*
Linux/Linux
6.14
Linux/Linux
6.9
Linux/Linux
f9183eaad91521ba1c04a19e5606ae61560a735e - 74af8b9d0e79deefd2d43e14b84575839a849169
Linux/Linux
f9183eaad91521ba1c04a19e5606ae61560a735e - b88655bc6593c6a7fdc1248b212d17e581c4334e
Linux/Linux
f9183eaad91521ba1c04a19e5606ae61560a735e - df2f2d9199e61819cca5da0121dfa4d4cb57000f
... and 1 more
Published
Feb 27, 2025
Tracked Since
Feb 18, 2026