NuytsTech Security

CVE-2025-21735

by ·

In the Linux kernel, the following vulnerability has been resolved:

NFC: nci: Add bounds checking in nci_hci_create_pipe()

The “pipe” variable is a u8 which comes from the network. If it’s more
than 127, then it results in memory corruption in the caller,
nci_hci_connect_gate().

More information : https://git.kernel.org/stable/c/10b3f947b609713e04022101f492d288a014ddfa

Tags: