CVE-2025-37792 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: Prevent potential NULL dereference The btrtl_initialize() function checks that rtl_load_file() either had an error or it loaded a zero length file. However, if it loaded a zero length file then the error code is not set correctly. It results in an error pointer vs NULL bug, followed by a NULL pointer dereference. This was detected by Smatch: drivers/bluetooth/btrtl.c:592 btrtl_initialize() warn: passing zero to 'ERR_PTR'

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/2d7c60c2a38b4b461fa960ad0995136a6bfe0756
https://git.kernel.org/stable/c/324dddea321078a6eeb535c2bff5257be74c9799
https://git.kernel.org/stable/c/3db6605043b50c8bb768547b23e0222f67ceef3e
https://git.kernel.org/stable/c/53ceef799dcfc22c734d600811bfc9dd32eaea0a
https://git.kernel.org/stable/c/73dc99c0ea94abd22379b2d82cacbc73f3e18ec1
https://git.kernel.org/stable/c/aaf356f872a60db1e96fb762a62c4607fd22741f
https://git.kernel.org/stable/c/c3e9717276affe59fd8213706db021b493e81e34
https://git.kernel.org/stable/c/d8441818690d795232331bd8358545c5c95b6b72
https://lore.kernel.org/linux-cve-announce/2025050120-CVE-2025-37792-def8@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2025-37792
https://www.cve.org/CVERecord?id=CVE-2025-37792

History

Fri, 02 May 2025 14:45:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025050120-CVE-2025-37792-def8@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2025-37792 https://www.cve.org/CVERecord?id=CVE-2025-37792
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Fri, 02 May 2025 06:30:00 +0000

Type	Values Removed	Values Added
References		https://git.kernel.org/stable/c/2d7c60c2a38b4b461fa960ad0995136a6bfe0756 https://git.kernel.org/stable/c/73dc99c0ea94abd22379b2d82cacbc73f3e18ec1 https://git.kernel.org/stable/c/c3e9717276affe59fd8213706db021b493e81e34

Thu, 01 May 2025 13:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: Prevent potential NULL dereference The btrtl_initialize() function checks that rtl_load_file() either had an error or it loaded a zero length file. However, if it loaded a zero length file then the error code is not set correctly. It results in an error pointer vs NULL bug, followed by a NULL pointer dereference. This was detected by Smatch: drivers/bluetooth/btrtl.c:592 btrtl_initialize() warn: passing zero to 'ERR_PTR'
Title		Bluetooth: btrtl: Prevent potential NULL dereference
References		https://git.kernel.org/stable/c/324dddea321078a6eeb535c2bff5257be74c9799 https://git.kernel.org/stable/c/3db6605043b50c8bb768547b23e0222f67ceef3e https://git.kernel.org/stable/c/53ceef799dcfc22c734d600811bfc9dd32eaea0a https://git.kernel.org/stable/c/aaf356f872a60db1e96fb762a62c4607fd22741f https://git.kernel.org/stable/c/d8441818690d795232331bd8358545c5c95b6b72

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-05-01T13:07:24.882Z

Updated: 2025-05-02T06:16:31.893Z

Reserved: 2025-04-16T04:51:23.941Z

Link: CVE-2025-37792

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-05-01T14:15:43.660

Modified: 2025-05-02T13:53:20.943

Link: CVE-2025-37792

Redhat

Severity : Moderate

Publid Date: 2025-05-01T00:00:00Z

Links: CVE-2025-37792 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object