CVE-2025-38304

Summary

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: Fix NULL pointer deference on eir_get_service_data

The len parameter is considered optional so it can be NULL so it cannot be used for skipping to next entry of EIR_SERVICE_DATA.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8f9ae5b3ae80f168a6224529e3787f4fb27f299a < 497c9d2d7d3983826bb02c10fb4a5818be6550fbaffected
LinuxLinux8f9ae5b3ae80f168a6224529e3787f4fb27f299a < 4bf29910570666e668a60d953f8da78e95bb7fa2affected
LinuxLinux8f9ae5b3ae80f168a6224529e3787f4fb27f299a < 842f7c3154d5b25ca11753c02ee8cf6ee64c0142affected
LinuxLinux8f9ae5b3ae80f168a6224529e3787f4fb27f299a < 7d99cc0f8e6fa0f35570887899f178122a61d44eaffected
LinuxLinux8f9ae5b3ae80f168a6224529e3787f4fb27f299a < 20a2aa01f5aeb6daad9aeaa7c33dd512c58d81ebaffected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux6.1.142 <= 6.1.*unaffected
LinuxLinux6.6.94 <= 6.6.*unaffected
LinuxLinux6.12.34 <= 6.12.*unaffected
LinuxLinux6.15.3 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References