CVE-2025-40318 | Linux Kernel up to 6.1.158/6.6.116/6.12.57/6.17.7 Bluetooth hci_cmd_sync_dequeue_once use after free

A vulnerability was found in Linux Kernel up to 6.1.158/6.6.116/6.12.57/6.17.7. It has been rated as critical. The affected element is the function hci_cmd_sync_dequeue_once of the component Bluetooth. This manipulation causes use after free.

This vulnerability is tracked as CVE-2025-40318. The attack is only possible within the local network. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More