CNNVD-202512-4663 Information

CNNVD ID

CNNVD-202512-4663

Related CVE

CVE-2023-54038

• CNNVD Published: 2025-12-24

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于蓝牙hci_conn在无连接时返回NULL而非ERR_PTR，可能导致空指针取消引用。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel had a security loophole, which originated in Bluetoothhci conn returning to NULL rather than ERR PTR without connection, which could lead to an empty pointer cancellation of the reference.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-12-24

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/b4066eb04bb67e7ff66e5aaab0db4a753f37eaad https://git.kernel.org/stable/c/357ab53c83a5322437fa434e9a9e3e0bafe6b383 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-24-12-2025-49195

Patch

https://www.kernel.org/