Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix NULL pointer deference on eir_get_service_data The len parameter is considered optional so it can be NULL so it cannot be used for skipping to next entry of EIR_SERVICE_DATA.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.19, < 6.1.142 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/20a2aa01f5aeb6daad9aeaa7c33dd512c58d81ebPatch
- https://git.kernel.org/stable/c/497c9d2d7d3983826bb02c10fb4a5818be6550fbPatch
- https://git.kernel.org/stable/c/4bf29910570666e668a60d953f8da78e95bb7fa2Patch
- https://git.kernel.org/stable/c/7d99cc0f8e6fa0f35570887899f178122a61d44ePatch
- https://git.kernel.org/stable/c/842f7c3154d5b25ca11753c02ee8cf6ee64c0142Patch
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.htmlThird Party Advisory
FAQ
What is CVE-2025-38304?
CVE-2025-38304 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix NULL pointer deference on eir_get_service_data The len parameter is considered optional so it can be NULL so it can...
How severe is CVE-2025-38304?
CVE-2025-38304 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-38304?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.