CVE-2022-50233

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A flaw exists in the Bluetooth implementation of the Linux kernel where the strlen function is used with hdev->{dev name,short name} which are not guaranteed to be NULL terminated. This issue is addressed by using strnlen to determine the string length and handle potential truncation.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

AZL-70474

BDU:2025-09669

CVE-2022-50233

SUSE-SU-2025:03613-1

SUSE-SU-2025:03614-1

SUSE-SU-2025:03615-1

SUSE-SU-2025:03626-1

SUSE-SU-2025:03628-1

SUSE-SU-2025:3716-1

SUSE-SU-2025:3761-1

SUSE-SU-2026:0154-1

SUSE-SU-2026:0155-1

SUSE-SU-2026:0163-1

SUSE-SU-2026:0166-1

SUSE-SU-2026:0168-1

SUSE-SU-2026:0174-1

SUSE-SU-2026:0176-1

SUSE-SU-2026:0191-1

Affected Products

Debian

Linux Kernel

Suse

CVE-2022-50233

Weakness Enumeration

Related Identifiers

Affected Products

References · 1041