SB2025120880 - Out-of-bounds read in Linux kernel bluetooth
Published: December 8, 2025
Security Bulletin ID
SB2025120880
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Out-of-bounds read (CVE-ID: CVE-2025-40294)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to an out-of-bounds read error within the parse_adv_monitor_pattern() function in net/bluetooth/mgmt.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/3a50d59b3781bc3a4e96533612509546a4c309a7
- https://git.kernel.org/stable/c/4b7d4aa5399b5a64caee639275615c63c008540d
- https://git.kernel.org/stable/c/5f7350ff2b179764a4f40ba4161b60b8aaef857b
- https://git.kernel.org/stable/c/8d59fba49362c65332395789fd82771f1028d87e
- https://git.kernel.org/stable/c/96616530f524a0a76248cd44201de0a9e8526190