CVE-2025-21937

Summary

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: Add check for mgmt_alloc_skb() in mgmt_remote_name()

Add check for the return value of mgmt_alloc_skb() in mgmt_remote_name() to prevent null pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxba17bb62ce415950753c19d16bb43b2bd3701158 < 37785a01040cb5d11ed0ddbcbf78491fcd073161affected
LinuxLinuxba17bb62ce415950753c19d16bb43b2bd3701158 < c5845c73cbacf5704169283ef29ca02031a36564affected
LinuxLinuxba17bb62ce415950753c19d16bb43b2bd3701158 < 88310caff68ae69d0574859f7926a59c1da2d60baffected
LinuxLinuxba17bb62ce415950753c19d16bb43b2bd3701158 < 69fb168b88e4d62cb31cdd725b67ccc5216cfcafaffected
LinuxLinuxba17bb62ce415950753c19d16bb43b2bd3701158 < f2176a07e7b19f73e05c805cf3d130a2999154cbaffected
LinuxLinux0f526a6d3e9347d94c2c0b5292a3cb3b25115019affected
LinuxLinux5.17.2 < 5.18affected
LinuxLinux5.18affected
LinuxLinux0 < 5.18unaffected
LinuxLinux6.1.131 <= 6.1.*unaffected
LinuxLinux6.6.83 <= 6.6.*unaffected
LinuxLinux6.12.19 <= 6.12.*unaffected
LinuxLinux6.13.7 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References