CVE-2025-40141
Advisory lineage Upstream: 0 Downstream: 39
Deferred
Published: 12 Nov 2025, 10:23
Last modified:11 May 2026, 21:43
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
0.03% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
12 Nov 2025, 10:23
Published
Vulnerability first disclosed
11 May 2026, 21:43
Last Modified
Vulnerability information updated
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix possible UAF on iso_conn_free This attempt to fix similar issue to sco_conn_free where if the conn->sk is not set to NULL may lead to UAF on iso_conn_free.
EPSS Trends
Current EPSS score: 0.03%• Percentile: 9%
Affected Systems
- linux•linux
≥ ccf74f2390d60a2f9a75ef496d2564abb478f46a, < eba6d787ec117a5d2c60f9644e0a39c18542b6be | ≥ ccf74f2390d60a2f9a75ef496d2564abb478f46a, < 5319145a07d8bf5b0782b25cb3115825689d42bb | ≥ ccf74f2390d60a2f9a75ef496d2564abb478f46a, < 80689777919f02328eb873769de4647c9dd3e371 | ≥ ccf74f2390d60a2f9a75ef496d2564abb478f46a, < c92ad1a155ccfa38b87bd1d998287e1c0a24248d | ≥ ccf74f2390d60a2f9a75ef496d2564abb478f46a, < 9950f095d6c875dbe0c9ebfcf972ec88fdf26fc8 | 6.0
References (5)
- https://git.kernel.org/stable/c/eba6d787ec117a5d2c60f9644e0a39c18542b6be
- https://git.kernel.org/stable/c/5319145a07d8bf5b0782b25cb3115825689d42bb
- https://git.kernel.org/stable/c/80689777919f02328eb873769de4647c9dd3e371
- https://git.kernel.org/stable/c/c92ad1a155ccfa38b87bd1d998287e1c0a24248d
- https://git.kernel.org/stable/c/9950f095d6c875dbe0c9ebfcf972ec88fdf26fc8