CVE-2025-38303

Published: Jul 10, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix possible crashes on eir_create_adv_data eir_create_adv_data may attempt to add EIR_FLAGS and EIR_TX_POWER without checking if that would fit.

Vendor	Product	Versions
Linux	Linux	affected `01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 - < 2d4588f55cc10fc228f3b46469dbfb3f0a8b13c8` affected `01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 - < 2af40d795d3fb0ee5c074b7ac56ab22402aa6e4f` affected `01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 - < b9db0c27e73b7c8a19384a44af527edfda74ff3d` affected `01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 - < 47c03902269aff377f959dc3fd94a9733aa31d6e`
Linux	Linux	affected `5.16` unaffected `0 - < 5.16` unaffected `6.1.168 - <= 6.1.` unaffected `6.12.34 - <= 6.12.` unaffected `6.15.3 - <= 6.15.*` +1 more versions

References

https://git.kernel.org/stable/c/2d4588f55cc10fc228f3b46469dbfb3f0a8b13c8

https://git.kernel.org/stable/c/2af40d795d3fb0ee5c074b7ac56ab22402aa6e4f

https://git.kernel.org/stable/c/b9db0c27e73b7c8a19384a44af527edfda74ff3d

https://git.kernel.org/stable/c/47c03902269aff377f959dc3fd94a9733aa31d6e

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-38303

Description

Affected Products

References