Linux Kernel Bluetooth Null Pointer Dereference Vulnerability

Vulnerability

A null pointer dereference vulnerability has been addressed in the Linux kernel's Bluetooth subsystem. The issue arose in the 'mgmt_remote_name()' function, where a check for the return value of 'mgmt_alloc_skb()' was missing. This oversight could lead to a null pointer dereference, potentially causing a denial-of-service condition.

Impact

Exploitation of this vulnerability could lead to a null pointer dereference, causing a denial-of-service condition by crashing the Bluetooth subsystem or the entire system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Bluetooth Null Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating