Home

Description

In the Linux kernel, the following vulnerability has been resolved: misc: bcm_vk: Fix possible null-pointer dereferences in bcm_vk_read() In the function bcm_vk_read(), the pointer entry is checked, indicating that it can be NULL. If entry is NULL and rc is set to -EMSGSIZE, the following code may cause null-pointer dereferences: struct vk_msg_blk tmp_msg = entry->to_h_msg[0]; set_msg_id(&tmp_msg, entry->usr_msg_id); tmp_msg.size = entry->to_h_blks - 1; To prevent these possible null-pointer dereferences, copy to_h_msg, usr_msg_id, and to_h_blks from iter into temporary variables, and return these temporary variables to the application instead of accessing them through a potentially NULL entry.

PUBLISHED Reserved 2026-05-06 | Published 2026-05-06 | Updated 2026-05-07 | Assigner Linux

Product status

Default status
unaffected

88517757a829e9ce146a6c7233ad5dcdc66fcbb0 (git) before 741c5a3a0cd893a4218fc0fc8c18403e54fcfb22
affected

88517757a829e9ce146a6c7233ad5dcdc66fcbb0 (git) before ece3722169ba93734bfd1f06255e8ab7f19fe964
affected

88517757a829e9ce146a6c7233ad5dcdc66fcbb0 (git) before aa97ccc3dc1eba9f4537f0410e9dbb0b05ccf2fb
affected

88517757a829e9ce146a6c7233ad5dcdc66fcbb0 (git) before 3842f93e6e29d5cc1dcb9e5bda70587b444bed69
affected

88517757a829e9ce146a6c7233ad5dcdc66fcbb0 (git) before 20f2d9dbe5e972516f8f9948d7ae5b95d1ad77bd
affected

88517757a829e9ce146a6c7233ad5dcdc66fcbb0 (git) before ba75ecb97d3f4e95d59002c13afb6519205be6cb
affected

Default status
affected

5.19
affected

Any version before 5.19
unaffected

6.1.165 (semver)
unaffected

6.6.128 (semver)
unaffected

6.12.75 (semver)
unaffected

6.18.16 (semver)
unaffected

6.19.6 (semver)
unaffected

7.0 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/741c5a3a0cd893a4218fc0fc8c18403e54fcfb22

git.kernel.org/...c/ece3722169ba93734bfd1f06255e8ab7f19fe964

git.kernel.org/...c/aa97ccc3dc1eba9f4537f0410e9dbb0b05ccf2fb

git.kernel.org/...c/3842f93e6e29d5cc1dcb9e5bda70587b444bed69

git.kernel.org/...c/20f2d9dbe5e972516f8f9948d7ae5b95d1ad77bd

git.kernel.org/...c/ba75ecb97d3f4e95d59002c13afb6519205be6cb

cve.org (CVE-2025-71291)

nvd.nist.gov (CVE-2025-71291)

Download JSON