Home > Vulnerability Database > CVE-2012-6544

Mend.io Vulnerability Database

CVE-2012-6544

Good to know:

Date: March 14, 2013

The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the (1) L2CAP or (2) HCI implementation.

Language: C

Severity Score

2.9

Related Resources (15)

Url: https://access.redhat.com/security/cve/CVE-2012-6544

Url: https://github.com/torvalds/linux/commit/e15ca9a0ef9a86f0477530b0f44a725d67f889ee

Url: http://rhn.redhat.com/errata/RHSA-2013-1173.html

Url: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e15ca9a0ef9a86f0477530b0f44a725d67f889ee

Url: https://github.com/torvalds/linux/commit/792039c73cf176c8e39a6e8beef2c94ff46522ed

Url: https://nvd.nist.gov/vuln/detail/CVE-2012-6544

Url: http://www.ubuntu.com/usn/USN-1808-1

Url: http://www.ubuntu.com/usn/USN-1805-1

Url: http://www.openwall.com/lists/oss-security/2013/03/05/13

Url: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=792039c73cf176c8e39a6e8beef2c94ff46522ed

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544

Url: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3f68ba07b1da811bf383b4b701b129bfcb2e4988

Url: https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2

Url: https://github.com/torvalds/linux/commit/3f68ba07b1da811bf383b4b701b129bfcb2e4988

Url: https://www.mend.io/vulnerability-database/CVE-2012-6544

Severity Score

2.9

Weakness Type (CWE)

Information Leak / Disclosure

CWE-200

Top Fix

Upgrade Version

Upgrade to version 3.6

Learn More

CVSS v3.1

Base Score:	2.9
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	1.9
Access Vector (AV):	LOCAL
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2012-6544

Good to know:

Date: March 14, 2013

Language: C

Severity Score

Related Resources (15)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?