Primary

Context

Linux Kernel Bluetooth btusb NULL Pointer Dereference Vulnerability

Vulnerability

Patched

A potential NULL pointer dereference vulnerability has been identified in the Bluetooth btusb driver of the Linux kernel. This issue arises from improper handling of memory allocation failures, specifically related to the kmalloc function. The vulnerability could lead to a crash or undefined behavior by allowing a NULL pointer to be dereferenced, disrupting normal operation.

Impact

Exploitation of this vulnerability could cause a NULL pointer dereference, leading to a crash or undefined behavior in the Bluetooth btusb driver.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the latest kernel version can be found on the official Linux kernel website.

Added: Aug 22, 2025, 5:03 PM

Updated: Aug 22, 2025, 5:03 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Bluetooth btusb NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating