Unrated severityNVD Advisory· Published Aug 9, 2025· Updated Oct 29, 2025

Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name}

CVE-2022-50233

Description

In the Linux kernel, the following vulnerability has been resolved:

Both dev_name and short_name are not guaranteed to be NULL terminated so this instead use strnlen and then attempt to determine if the resulting string needs to be truncated or not.

Affected products

Linux/Linux Kernel Rtllm-fuzzy
Linux/Linuxv5
Range: 4.14

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/dd7b8cdde098cf9f7c8de409b5b7bbb98f97be80mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000