CVE-2012-6544

Public on 2013-03-15

Modified on 2014-09-15

Description

The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the (1) L2CAP or (2) HCI implementation.

Severity

Low

See what this means

CVSS v3 Base Score

2.1

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory
Amazon Linux 1	kernel	2013-06-11	ALAS-2013-200

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv2	2.1	AV:L/AC:L/Au:N/C:P/I:N/A:N
NVD	CVSSv2	1.9	AV:L/AC:M/Au:N/C:P/I:N/A:N

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2012-6544 Mitre: CVE-2012-6544