CVE-2025-38303 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix possible crashes on eir_create_adv_data eir_create_adv_data may attempt to add EIR_FLAGS and EIR_TX_POWER without checking if that would fit.

PUBLISHED Reserved 2025-04-16 | Published 2025-07-10 | Updated 2026-05-11 | Assigner Linux

Product status

Default status

unaffected

01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 (git) before 2d4588f55cc10fc228f3b46469dbfb3f0a8b13c8

affected

01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 (git) before 2af40d795d3fb0ee5c074b7ac56ab22402aa6e4f

affected

01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 (git) before b9db0c27e73b7c8a19384a44af527edfda74ff3d

affected

01ce70b0a274bd76a5a311fb90d4d446d9bdfea1 (git) before 47c03902269aff377f959dc3fd94a9733aa31d6e

affected

Default status

affected

5.16

affected

Any version before 5.16

unaffected

6.1.168 (semver)

unaffected

6.12.34 (semver)

unaffected

6.15.3 (semver)

unaffected

6.16 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/2d4588f55cc10fc228f3b46469dbfb3f0a8b13c8

git.kernel.org/...c/2af40d795d3fb0ee5c074b7ac56ab22402aa6e4f

git.kernel.org/...c/b9db0c27e73b7c8a19384a44af527edfda74ff3d

git.kernel.org/...c/47c03902269aff377f959dc3fd94a9733aa31d6e

cve.org (CVE-2025-38303)

nvd.nist.gov (CVE-2025-38303)

Download JSON