CVE-2022-49139

Published: Feb 26, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt This event is just specified for SCO and eSCO link types. On the reception of a HCI_Synchronous_Connection_Complete for a BDADDR of an existing LE connection, LE link type and a status that triggers the second case of the packet processing a NULL pointer dereference happens, as conn->link is NULL.

Vendor	Product	Versions
Linux	Linux	affected `efc7688b557dd1be10eead7399b315efcb1dbc74 - < 1c1291a84e94f6501644634c97544bb8291e9a1a` affected `efc7688b557dd1be10eead7399b315efcb1dbc74 - < 0f9db1209f59844839175b5b907d3778cafde93d` affected `efc7688b557dd1be10eead7399b315efcb1dbc74 - < c1aa0dd52db4ce888be0bd820c3fa918d350ca0b` affected `efc7688b557dd1be10eead7399b315efcb1dbc74 - < f61c23e73dc653b957781066abfa8105c3fa3f5b` affected `efc7688b557dd1be10eead7399b315efcb1dbc74 - < 3afee2118132e93e5f6fa636dfde86201a860ab3`
Linux	Linux	affected `2.6.30` unaffected `0 - < 2.6.30` unaffected `5.4.231 - <= 5.4.` unaffected `5.10.167 - <= 5.10.` unaffected `5.15.92 - <= 5.15.*` +2 more versions

References

https://git.kernel.org/stable/c/1c1291a84e94f6501644634c97544bb8291e9a1a

https://git.kernel.org/stable/c/0f9db1209f59844839175b5b907d3778cafde93d

https://git.kernel.org/stable/c/c1aa0dd52db4ce888be0bd820c3fa918d350ca0b

https://git.kernel.org/stable/c/f61c23e73dc653b957781066abfa8105c3fa3f5b

https://git.kernel.org/stable/c/3afee2118132e93e5f6fa636dfde86201a860ab3

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49139

Description

Affected Products

References