VDB
DEBIAN-CVE-2025-40283
DEBIAN-CVE-2025-40283
PUBLISHED
CVSS 9.300000190734863 CRITICAL
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF There is a KASAN: slab-use-after-free read in btusb_disconnect(). Calling "usb_driver_release_interface(&btusb_driver, data->intf)" will free the btusb data associated with the interface. The same data is then used later in the function, hence the UAF. Fix by moving the accesses to btusb data to before the data is free'd.
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | linux-6.1 | 6.1.158-1, 6.1.153-1, 6.1.148-1 |
| Debian:14 | linux | 6.14.6-1~exp1, *, 6.15.2-1~exp1 |
| Debian:11 | linux | 5.10.209-2, 0, 5.10.103-1~bpo10+1 |
| Debian:12 | linux | 6.1.55-1~bpo11+1, 6.1.38-4~bpo11+1, 6.1.38-4 |
| Debian:13 | linux | 6.12.48-1, 6.12.57-1, 6.12.57-1 |
Exploit Intelligence
- 4081.3.7.yml (github-poc)
Timeline
- Dec 6, 2025 CVE Published
- Apr 28, 2026 CVE Updated