CNNVD-202507-214 Information

CNNVD ID

CNNVD-202507-214

Related CVE

CVE-2025-38128

• CNNVD Published: 2025-07-03

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于Bluetooth MGMT未验证HCI_CMD_SYNC参数长度，可能导致越界写入。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel had a security loophole, which stemmed from the failure of Bluetooth MGMT to verify the length of HCI CMD SYNC parameters, which could lead to cross-border writing.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

LinuxServer.io

Published

2025-07-03

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/9eeafd16d76a7642d12b3442a26c15cd345e12f7 https://git.kernel.org/stable/c/03f1700b9b4d4f2fed3165370f3c23db76553178 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-04-07-2025-47597

Patch

https://www.kernel.org/