CVE-2025-71291
Published: May 6, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: misc: bcm_vk: Fix possible null-pointer dereferences in bcm_vk_read() In the function bcm_vk_read(), the pointer entry is checked, indicating that it can be NULL. If entry is NULL and rc is set to -EMSGSIZE, the following code may cause null-pointer dereferences: struct vk_msg_blk tmp_msg = entry->to_h_msg[0]; set_msg_id(&tmp_msg, entry->usr_msg_id); tmp_msg.size = entry->to_h_blks - 1; To prevent these possible null-pointer dereferences, copy to_h_msg, usr_msg_id, and to_h_blks from iter into temporary variables, and return these temporary variables to the application instead of accessing them through a potentially NULL entry.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 88517757a829e9ce146a6c7233ad5dcdc66fcbb0 - < 741c5a3a0cd893a4218fc0fc8c18403e54fcfb22affected 88517757a829e9ce146a6c7233ad5dcdc66fcbb0 - < ece3722169ba93734bfd1f06255e8ab7f19fe964affected 88517757a829e9ce146a6c7233ad5dcdc66fcbb0 - < aa97ccc3dc1eba9f4537f0410e9dbb0b05ccf2fbaffected 88517757a829e9ce146a6c7233ad5dcdc66fcbb0 - < 3842f93e6e29d5cc1dcb9e5bda70587b444bed69affected 88517757a829e9ce146a6c7233ad5dcdc66fcbb0 - < 20f2d9dbe5e972516f8f9948d7ae5b95d1ad77bd+1 more versions |
Linux | Linux | affected 5.19unaffected 0 - < 5.19unaffected 6.1.165 - <= 6.1.*unaffected 6.6.128 - <= 6.6.*unaffected 6.12.75 - <= 6.12.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now