391 matches found
CVE-2025-38250
In CVE-2025-38250, the Linux kernel Bluetooth vhci_flush() path is affected by a use-after-free when a thread closes a vhci fd while another thread uses the device. The issue stems from a missing synchronization after unlinking hdev from hci_dev_list in hci_unregister_dev(), allowing another thre...
CVE-2025-38250 Bluetooth: hci_core: Fix use-after-free in vhci_flush()
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix use-after-free in vhciflush syzbot reported use-after-free in vhciflush without repro. 0 From the splat, a thread closed a vhci file descriptor while its device was being used by iotcl on another thread...
CVE-2025-20687
In Bluetooth driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418045; Issue ID: MSV-3481...
CVE-2025-20680
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...
CVE-2025-20687
CVE-2025-20687 affects the Bluetooth driver (MediaTek chipset family in various advisories). The vulnerability is an out-of-bounds read caused by an incorrect bounds check, enabling local denial of service with the attacker gaining user privileges; exploitation does not require user interaction. ...
CVE-2025-20687
In Bluetooth driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418045; Issue ID: MSV-3481...
CVE-2025-20687
In Bluetooth driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418045; Issue ID: MSV-3481...
CVE-2025-20680
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...
CVE-2025-20680
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...
CVE-2025-20680
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...
CVE-2025-20680
CVE-2025-20680 affects the Bluetooth driver, with an out-of-bounds write caused by an incorrect bounds check. The vulnerability can lead to local escalation of privilege with User execution privileges required and no user interaction needed. Patch ID: WCNCR00418044; Issue ID: MSV-3482. Vulnerabil...
PT-2025-28307 · Unknown · Bluetooth Driver
Name of the Vulnerable Software and Affected Versions: Bluetooth driver affected versions not specified Description: The issue is related to a possible out of bounds write in the Bluetooth driver due to an incorrect bounds check. This could lead to a local escalation of privilege, requiring user...
PT-2025-28314 · Unknown · Bluetooth Driver
Name of the Vulnerable Software and Affected Versions: Bluetooth driver affected versions not specified Description: The issue is related to a possible out of bounds read in the Bluetooth driver due to an incorrect bounds check. This could lead to a local denial of service, requiring user executi...
USN-7591-5: Linux kernel (Intel IoTG) vulnerabilities
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...
Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7597-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7597-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...
Ubuntu 22.04 LTS : Linux kernel (Xilinx ZynqMP) vulnerabilities (USN-7602-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7602-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...
Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7591-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7591-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...
USN-7598-1: Linux kernel (Azure) vulnerabilities
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Several security issues were discovered in the Linu...
USN-7597-2: Linux kernel (Azure FIPS) vulnerabilities
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Several security issues were discovered in the Linu...
USN-7597-1: Linux kernel (Azure) vulnerabilities
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Several security issues were discovered in the Linu...