CVE-2025-40213 Bluetooth: MGMT: fix crash in set_mesh_sync and set_mesh_complete

🗓️ 24 Nov 2025 15:59:44Reported by LinuxType

Bluetooth management fixes crashes in set_mesh_sync and set_mesh_complete.

Reporter	Title	Published	Views	Family All 146
ATTACKERKB	CVE-2025-40213	24 Nov 202515:59	–	attackerkb
AstraLinux	Astra Linux – Vulnerability in Linux 5.10	3 May 202623:59	–	astralinux
CNNVD	Linux kernel 安全漏洞	24 Nov 202500:00	–	cnnvd
CVE	CVE-2025-40213	24 Nov 202515:59	–	cve
Debian CVE	CVE-2025-40213	24 Nov 202515:59	–	debiancve
EUVD	EUVD-2025-198890	24 Nov 202518:31	–	euvd
NVD	CVE-2025-40213	24 Nov 202516:15	–	nvd
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2026:20145-1)	4 Feb 202600:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50006)	14 Jan 202600:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2026:0278-1)	24 Jan 202600:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "include/net/bluetooth/mgmt.h",
      "net/bluetooth/mgmt.c"
    ],
    "versions": [
      {
        "version": "d71b98f253b079cbadc83266383f26fe7e9e103b",
        "lessThan": "5c19daa93d9af29f1f46251b47e1ea66bcc8d679",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "302a1f674c00dd5581ab8e493ef44767c5101aab",
        "lessThan": "1c9aca1787e8395a2c59fef20e914467958969c5",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "302a1f674c00dd5581ab8e493ef44767c5101aab",
        "lessThan": "e8785404de06a69d89dcdd1e9a0b6ea42dc6d327",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0b60eb04b8524e1b4b3f07fea0d16fda9a677d9a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "87a1f16f07c6c43771754075e08f45b41d237421",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6.6.140",
        "lessThan": "6.7",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.16.10",
        "lessThan": "6.17",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "include/net/bluetooth/mgmt.h",
      "net/bluetooth/mgmt.c"
    ],
    "versions": [
      {
        "version": "6.17",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.17",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17.8",
        "lessThanOrEqual": "6.17.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/1c9aca1787e8395a2c59fef20e914467958969c5
git	www.git.kernel.org/stable/c/5c19daa93d9af29f1f46251b47e1ea66bcc8d679
git	www.git.kernel.org/stable/c/e8785404de06a69d89dcdd1e9a0b6ea42dc6d327

23 May 2026 16:01Current

EPSS0.00155