CVE-2025-9558 Bluetooth: Mesh: Out-of-Bound Write in gen_prov_start

There is a potential OOB Write vulnerability in the genprovstart function in pbadv.c. The full length of the received data is copied into the link.rx.buf receiver buffer without any validation on the data size...

PT-2025-48129

Name of the Vulnerable Software and Affected Versions versions prior to 2025-9558 Description A potential out-of-bounds write issue exists in the gen prov start function within the pb adv.c file. The issue occurs because the full length of received data is copied into the link.rx.buf receiver...