SB20251015105 - Use-after-free in Linux kernel bluetooth
Published: October 15, 2025
Security Bulletin ID
SB20251015105
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Use-after-free (CVE-ID: CVE-2025-39982)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the hci_conn_complete_evt() and le_conn_complete_evt() functions in net/bluetooth/hci_event.c. A local user can escalate privileges on the system.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/484c7d571a3d1b3fd298fa691b660438c4548a53
- https://git.kernel.org/stable/c/6243bda271a628c48875e3e473206e7f584892ce
- https://git.kernel.org/stable/c/9e622804d57e2d08f0271200606bd1270f75126f
- https://git.kernel.org/stable/c/a78fd4fc5694ecb3b97deb2ad9eaebd67b4d2b08
- https://git.kernel.org/stable/c/bcce99f613163a43de24674b717e7a6c135fc879