CVE-2025-38304
Description
In the Linux kernel, the following vulnerability has been resolved:Bluetooth: Fix null pointer deference on eir_get_service_dataThe len parameter is considered optional so it can be null so it cannotbe used for skipping to next entry of EIR_SERVICE_DATA.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.019
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| linux security update(DSA-5973-1) DSA-5973-1 linux-cpupower_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-doc_6.1.147-1_all.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-doc-6.1_6.1.147-1_all.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-686-dbg_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-686-pae-dbg_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-cpupower_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-amd64-signed-template_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-cloud-amd64-dbg_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-i386-signed-template_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-rt-686-pae-dbg_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-rt-amd64-dbg_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-image-amd64-dbg_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-config-6.1_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-config-6.1_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-compiler-gcc-12-x86_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-kbuild-6.1_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 libcpupower1_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 libcpupower1_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 libcpupower-dev_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 libcpupower-dev_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 hyperv-daemons_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 hyperv-daemons_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 bpftool_7.1.0+6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-compiler-gcc-12-x86_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 usbip_2.0+6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 usbip_2.0+6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 rtla_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 rtla_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-source-6.1_6.1.147-1_all.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-source_6.1.147-1_all.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-libc-dev_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 bpftool_7.1.0+6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-libc-dev_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-perf_6.1.147-1_amd64.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-kbuild-6.1_6.1.147-1_i386.deb | Linux |
| linux security update(DSA-5973-1) DSA-5973-1 linux-perf_6.1.147-1_i386.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234