CVE-2025-40141

Published: Nov 12, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix possible UAF on iso_conn_free This attempt to fix similar issue to sco_conn_free where if the conn->sk is not set to NULL may lead to UAF on iso_conn_free.

Vendor	Product	Versions
Linux	Linux	affected `ccf74f2390d60a2f9a75ef496d2564abb478f46a - < eba6d787ec117a5d2c60f9644e0a39c18542b6be` affected `ccf74f2390d60a2f9a75ef496d2564abb478f46a - < 5319145a07d8bf5b0782b25cb3115825689d42bb` affected `ccf74f2390d60a2f9a75ef496d2564abb478f46a - < 80689777919f02328eb873769de4647c9dd3e371` affected `ccf74f2390d60a2f9a75ef496d2564abb478f46a - < c92ad1a155ccfa38b87bd1d998287e1c0a24248d` affected `ccf74f2390d60a2f9a75ef496d2564abb478f46a - < 9950f095d6c875dbe0c9ebfcf972ec88fdf26fc8`
Linux	Linux	affected `6.0` unaffected `0 - < 6.0` unaffected `6.1.156 - <= 6.1.` unaffected `6.6.112 - <= 6.6.` unaffected `6.12.53 - <= 6.12.*` +2 more versions

References

https://git.kernel.org/stable/c/eba6d787ec117a5d2c60f9644e0a39c18542b6be

https://git.kernel.org/stable/c/5319145a07d8bf5b0782b25cb3115825689d42bb

https://git.kernel.org/stable/c/80689777919f02328eb873769de4647c9dd3e371

https://git.kernel.org/stable/c/c92ad1a155ccfa38b87bd1d998287e1c0a24248d

https://git.kernel.org/stable/c/9950f095d6c875dbe0c9ebfcf972ec88fdf26fc8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-40141

Description

Affected Products

References