CVE-2025-38250
Bluetooth: hci_core: Fix use-after-free in vhci_flush()
References
Notes
carnil> Introduced in bf18c7118cf8 ("Bluetooth: vhci: Free driver_data on file
carnil> release"). Vulnerable versions: 3.4.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.16-rc4) [1d6123102e9fbedc8d25bf4731da6d513173e49e]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.15-upstream-stable |
released (6.15.5) [0e5c144c557df910ab64d9c25d06399a9a735e65]
|
| 6.12-upstream-stable |
released (6.12.36) [ce23b73f0f27e2dbeb81734a79db710f05aa33c6]
|
| 6.6-upstream-stable |
released (6.6.97) [bc0819a25e04cd68ef3568cfa51b63118fea39a7]
|
| 6.1-upstream-stable |
needed
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.12.37-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
needed
|
| 5.10-bullseye-security |
needed
|
