PT-2025-42256 · Linux+7 · Linux Kernel+7

Published

2025-10-15

·

Updated

2026-05-28

·

CVE-2025-39981

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a flaw related to Bluetooth MGMT handling, potentially leading to use-after-free (UAF) conditions. This issue arises from the improper management of mgmt pending structures, which can be freed while still being processed. The vulnerability occurs when a mgmt pending structure is freed while still being accessed, potentially leading to system instability or other undefined behavior. The fix introduces a check (mgmt pending valid) to ensure the structure hasn't been removed from the pending list before access, and removes the command from the list while holding the mgmt pending lock to prevent TOCTOU (Time-of-Check-Time-of-Use) problems.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Related Identifiers

ALSA-2025:22405
ALSA-2025:22854
ALSA-2026:21706
ALSA-2026:21745
AZL-68501
CVE-2025-39981
ECHO-4E46-EA8B-F7F7
INFSA-2025_22405
OESA-2026-1642
OESA-2026-1643
OESA-2026-1644
OPENSUSE-SU-2025:20091-1
RHSA-2026:0271
RHSA-2026:0457
RHSA-2026:10108
RHSA-2026:9512
RHSA-2026:9644
SUSE-SU-2025:21040-1
SUSE-SU-2025:21052-1
SUSE-SU-2025:21056-1
SUSE-SU-2025:21064-1
SUSE-SU-2025:21080-1
SUSE-SU-2025:21147-1
SUSE-SU-2025:21180-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4128-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4140-1
SUSE-SU-2025:4141-1
SUSE-SU-2025:4149-1
SUSE-SU-2025:4301-1
SUSE-SU-2025:4320-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8165-1
USN-8261-1

Affected Products

Almalinux
Debian
Linuxmint
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu