CVE-2025-21936

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmt_alloc_skb() in mgmt_device_connected() Add check for the return value of mgmt_alloc_skb() in mgmt_device_connected() to prevent null pointer dereference.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

e96741437ef0a5d18144e790ac894397efda0924 before dc516e66fb28c61b248b393e2ddd63bd7f104969
affected

e96741437ef0a5d18144e790ac894397efda0924 before bdb1805c248e9694dbb3ffa8867cef2e52cf7261
affected

e96741437ef0a5d18144e790ac894397efda0924 before 7841180342c9a0fd97d54f3e62c7369309b5cd84
affected

e96741437ef0a5d18144e790ac894397efda0924 before 7d39387886ffe220323cbed5c155233c3276926b
affected

e96741437ef0a5d18144e790ac894397efda0924 before d8df010f72b8a32aaea393e36121738bb53ed905
affected

Default status
affected

5.17
affected

Any version before 5.17
unaffected

6.1.131
unaffected

6.6.83
unaffected

6.12.19
unaffected

6.13.7
unaffected

6.14
unaffected

References

git.kernel.org/...c/dc516e66fb28c61b248b393e2ddd63bd7f104969

git.kernel.org/...c/bdb1805c248e9694dbb3ffa8867cef2e52cf7261

git.kernel.org/...c/7841180342c9a0fd97d54f3e62c7369309b5cd84

git.kernel.org/...c/7d39387886ffe220323cbed5c155233c3276926b

git.kernel.org/...c/d8df010f72b8a32aaea393e36121738bb53ed905

cve.org (CVE-2025-21936)

nvd.nist.gov (CVE-2025-21936)

Download JSON