CVE-2022-50233 – Linux Kernel Bluetooth eir strlen Vulnerability

CVE ID : CVE-2022-50233

Published : Aug. 9, 2025, 3:15 p.m. | 18 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name}

Both dev_name and short_name are not guaranteed to be NULL terminated so
this instead use strnlen and then attempt to determine if the resulting
string needs to be truncated or not.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…