CVE-2025-22007

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix error code in chan_alloc_skb_cb() The chan_alloc_skb_cb() function is supposed to return error pointers on error. Returning NULL will lead to a NULL dereference.

Reserved 2024-12-29 | Published 2025-04-03 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before b3d607e36fef4bd05fb938a8a868ff70e9fedbe2
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before 1bd68db7beb426ab5a45d81516ed9611284affc8
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before 76304cba8cba12bb10d89d016c28403a2dd89a29
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before 788ae2ae4cf484e248b5bc29211c7ac6510e3e92
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before ecd06ad0823a90b4420c377ef8917e44e23ee841
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before 761b7c36addd22c7e6ceb05caaadc3b062d99faa
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before a78692ec0d1e17a96b09f2349a028878f5b305e4
affected

6b8d4a6a03144c5996f98db7f8256267b0d72a3a before 72d061ee630d0dbb45c2920d8d19b3861c413e54
affected

Default status
affected

3.17
affected

Any version before 3.17
unaffected

5.4.292
unaffected

5.10.236
unaffected

5.15.180
unaffected

6.1.132
unaffected

6.6.85
unaffected

6.12.21
unaffected

6.13.9
unaffected

6.14
unaffected

References

git.kernel.org/...c/b3d607e36fef4bd05fb938a8a868ff70e9fedbe2

git.kernel.org/...c/1bd68db7beb426ab5a45d81516ed9611284affc8

git.kernel.org/...c/76304cba8cba12bb10d89d016c28403a2dd89a29

git.kernel.org/...c/788ae2ae4cf484e248b5bc29211c7ac6510e3e92

git.kernel.org/...c/ecd06ad0823a90b4420c377ef8917e44e23ee841

git.kernel.org/...c/761b7c36addd22c7e6ceb05caaadc3b062d99faa

git.kernel.org/...c/a78692ec0d1e17a96b09f2349a028878f5b305e4

git.kernel.org/...c/72d061ee630d0dbb45c2920d8d19b3861c413e54

cve.org (CVE-2025-22007)

nvd.nist.gov (CVE-2025-22007)

Download JSON