CVE-2025-21969 Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd

🗓️ 01 Apr 2025 15:47:03Reported by GoogleType

osv

osv🔗 osv.dev👁 6 Views

Bluetooth kernel vulnerability fixed to prevent slab-use-after-free issue in send command process.

Reporter	Title	Published	Views	Family All 326
Tenable Nessus	AlmaLinux 9 : kernel (ALSA-2025:9080)	3 Jul 202500:00	–	nessus
Tenable Nessus	Azure Linux 3.0 Security Update: kernel (CVE-2025-21969)	22 Jan 202600:00	–	nessus
Tenable Nessus	MiracleLinux 9 : kernel-5.14.0-570.22.1.el9_6 (AXSA:2025-10621:48)	13 Jan 202600:00	–	nessus
Tenable Nessus	MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.11.el7.AXS7 (AXSA:2025-9972:35)	13 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20480)	18 Jul 202500:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20530)	19 Aug 202500:00	–	nessus
Tenable Nessus	Oracle Linux 10 : kernel (ELSA-2025-9079)	4 Jul 202500:00	–	nessus
Tenable Nessus	Oracle Linux 9 : kernel (ELSA-2025-9080)	17 Jun 202500:00	–	nessus
Tenable Nessus	Photon OS 4.0: Linux PHSA-2025-4.0-0919	5 Dec 202500:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2025-5.0-0545	2 Jul 202500:00	–	nessus

Source	Link
git	www.git.kernel.org/stable/c/7790a79c6fce8d5d552bc64f5c82819f719e4f28
git	www.git.kernel.org/stable/c/b4f82f9ed43aefa79bec2504ae8c29be0c0f5d1d
git	www.git.kernel.org/stable/c/c96cce853542b3b13da3738f35ef1be8cfcc9d1d
git	www.git.kernel.org/stable/c/f8094625a591eeb0b75b1bd9e713fac1d93f5ca9
github	www.github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21969.json
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-21969
git	www.git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

16 Apr 2026 04:34Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.17.8

EPSS0.00035

linux kernel bluetooth vulnerability slab-use-after-free command synchronization hci receive data.