Wind River Support Network

HomeDefectsLIN1022-14041
Acknowledged

LIN1022-14041 : Security Advisory - linux - CVE-2025-21735

Created: Feb 27, 2025    Updated: Mar 20, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

NFC: nci: Add bounds checking in nci_hci_create_pipe()

The "pipe" variable is a u8 which comes from the network.  If it's more
than 127, then it results in memory corruption in the caller,
nci_hci_connect_gate().

CREATE(Triage):(User=admin) CVE-2025-21735 (https://nvd.nist.gov/vuln/detail/CVE-2025-21735)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube