CVE-2025-38250 | Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 Bluetooth include/linux/skbuff.h vhci_flush use after free

Inserito da Angelo Barbosa | Lug 9, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.12.35/6.15.4/6.16-rc3. This issue affects the function vhci_flush in the library include/linux/skbuff.h of the component Bluetooth. The manipulation leads to use after free.

The identification of this vulnerability is CVE-2025-38250. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-38250 | Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 Bluetooth include/linux/skbuff.h vhci_flush use after free

Post correlati

CVE-2024-32759 | Johnson Controls Software House CCURE 9000 Installer weak credentials (icsa-24-191-04)

CVE-2024-20110 | MediaTek MT8195 Ccu out-of-bounds write (MSV-1762 / ALPS09065887)

CVE-2024-10898 | krishaweb Contact Form 7 Email Add On Plugin up to 1.9 on WordPress cf7_email_add_on_add_admin_template filename control

CVE-2024-31890 | IBM i 7.3/7.4/7.5 TCP IP Connectivity Utilities unnecessary privileges (XFDB-288171)