Lucene search
K

12 matches found

RedHat Linux
RedHat Linux
added 2026/01/14 12:13 a.m.2 views

kernel: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync

A flaw was found in the Linux kernel’s Bluetooth subsystem HCI. Specifically, in the function hciaclcreateconnsync and related path hcilecreateconnsync, a connection object in state BTOPEN that is still pending command submission may be freed prematurely, leading to a use-after-free condition. An...

5.7AI score0.00183EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-39982

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission...

7.2AI score0.00183EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/16 11:29 a.m.7 views

CVE-2025-39982

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission conn-state == BTOPEN maybe freed, also since this also can happen wi...

7.5CVSS5.3AI score0.00183EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/10/16 8:3 a.m.3 views

Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync

...

7.8CVSS7AI score0.00183EPSS
Exploits0
EUVD
EUVD
added 2025/10/15 9:30 a.m.3 views

EUVD-2025-34590

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission conn-state == BTOPEN maybe freed, also since this also can happen wi...

6AI score0.00183EPSS
Exploits0References6
OSV
OSV
added 2025/10/15 8:15 a.m.4 views

AZL-68522 CVE-2025-39982 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission conn-state == BTOPEN maybe freed, also since this also can happen wi...

5.6AI score0.00183EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 8:15 a.m.2 views

UBUNTU-CVE-2025-39982

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission conn-state == BTOPEN maybe freed, also since this also can happen wi...

6.6AI score0.00183EPSS
Exploits0References18
CVE
CVE
added 2025/10/15 7:56 a.m.21 views

CVE-2025-39982

CVE-2025-39982 is a Linux kernel Bluetooth (hci_event) UAF in hci_acl_create_conn_sync. The initial CVE description confirms a use-after-free in hci_acl_create_conn_sync that can occur while a pending connection is being submitted (conn->state == BT_OPEN) and is similarly implicated for hci_le...

6.2AI score0.00183EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/10/15 12:0 a.m.4 views

PT-2025-42257

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc7 Description The Linux kernel contains a use-after-free issue within the Bluetooth stack, specifically in the hci acl create conn sync function. This flaw occurs when a connection is pending command...

7.7CVSS7.4AI score0.00183EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/15 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from a post-release reuse issue in hciaclcreateconnsync and hcilecreateconnsync, which could lead to memory...

6AI score0.00183EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-5554

Malware in sbrugna...

4.3CVSS7.3AI score0.01885EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.3 views

SUSE CVE-2013-5717

The Bluetooth HCI ACL dissector in Wireshark 1.10.x before 1.10.2 does not properly maintain a certain free list, which allows remote attackers to cause a denial of service application crash via a crafted packet that is not properly handled by the wmemblockalloc function in...

4.3CVSS7.4AI score0.01885EPSS
Exploits0References3
Rows per page
Query Builder