Linux Kernel Bluetooth NULL Pointer Dereference Vulnerability in hci_uart

Vulnerability

A vulnerability in the Linux kernel's Bluetooth subsystem, specifically within the hci_uart component, has been addressed. The issue stemmed from a missing NULL pointer check, which could lead to a general protection fault. The flaw occurred because the hu->serdev variable could be NULL, and passing &serdev->dev without proper validation could cause a crash.

Impact

The vulnerability could lead to a general protection fault, causing a crash by improperly handling a NULL pointer.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Bluetooth NULL Pointer Dereference Vulnerability in hci_uart

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating