CVE-2025-22007

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-22007

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22007.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-22007

Downstream

AZL-59751

AZL-59865

BELL-CVE-2025-22007

DEBIAN-CVE-2025-22007

DLA-4178-1

DLA-4193-1

DSA-5900-1

ECHO-4f54-3f30-a46e

MGASA-2025-0142

MGASA-2025-0146

MINI-qjxg-q43v-gvmx

OESA-2025-2120

OESA-2025-2121

OESA-2025-2122

ROOT-OS-UBUNTU-2404-CVE-2025-22007

SUSE-SU-2025:01614-1

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

SUSE-SU-2025:1293-1

SUSE-SU-2025:20192-1

SUSE-SU-2025:20206-1

SUSE-SU-2025:20270-1

SUSE-SU-2025:20283-1

Related

Published

2025-04-03T07:19:07.986Z

Modified

2026-05-07T04:17:01.779397Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Bluetooth: Fix error code in chan_alloc_skb_cb()

Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: Fix error code in chanallocskb_cb()

The chanallocskb_cb() function is supposed to return error pointers on error. Returning NULL will lead to a NULL dereference.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22007.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

6b8d4a6a03144c5996f98db7f8256267b0d72a3a

Fixed

b3d607e36fef4bd05fb938a8a868ff70e9fedbe2

Fixed

1bd68db7beb426ab5a45d81516ed9611284affc8

Fixed

76304cba8cba12bb10d89d016c28403a2dd89a29

Fixed

788ae2ae4cf484e248b5bc29211c7ac6510e3e92

Fixed

ecd06ad0823a90b4420c377ef8917e44e23ee841

Fixed

761b7c36addd22c7e6ceb05caaadc3b062d99faa

Fixed

a78692ec0d1e17a96b09f2349a028878f5b305e4

Fixed

72d061ee630d0dbb45c2920d8d19b3861c413e54

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22007.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.17.0

Fixed

5.4.292

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.236

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.180

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.132

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.85

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.21

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.13.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22007.json"