exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"BDU:2026-02834" OR bind:"CVE-2025-40301"

exploitDog

bind:"BDU:2026-02834" OR bind:"CVE-2025-40301"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 15

Количество 15

BDU:2026-02834

4 месяца назад

Уязвимость модуля Bluetooth ядра операционной системы Linux, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании

CVSS3: 4.4

EPSS: Низкий

CVE-2025-40301

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.

EPSS: Низкий

CVE-2025-40301

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.

CVSS3: 7.1

EPSS: Низкий

CVE-2025-40301

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.

EPSS: Низкий

CVE-2025-40301

4 месяца назад

Bluetooth: hci_event: validate skb length for unknown CC opcode

CVSS3: 7.1

EPSS: Низкий

CVE-2025-40301

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: B ...

EPSS: Низкий

GHSA-mp66-rx49-f278

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.

EPSS: Низкий

RLSA-2026:1690

около 2 месяцев назад

Important: kernel security update

EPSS: Низкий

ELSA-2026-1690

около 2 месяцев назад

ELSA-2026-1690: kernel security update (IMPORTANT)

EPSS: Низкий

ELSA-2026-50006

2 месяца назад

ELSA-2026-50006: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

openSUSE-SU-2026:20145-1

около 2 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2026:0293-1

около 2 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2026:0315-1

около 2 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2026:0281-1

2 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2026:0278-1

2 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	BDU:2026-02834 Уязвимость модуля Bluetooth ядра операционной системы Linux, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании	CVSS3: 4.4	0% Низкий	4 месяца назад
	CVE-2025-40301 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.		0% Низкий	4 месяца назад
	CVE-2025-40301 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.	CVSS3: 7.1	0% Низкий	4 месяца назад
	CVE-2025-40301 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.		0% Низкий	4 месяца назад
	CVE-2025-40301 Bluetooth: hci_event: validate skb length for unknown CC opcode	CVSS3: 7.1	0% Низкий	4 месяца назад
	CVE-2025-40301 In the Linux kernel, the following vulnerability has been resolved: B ...		0% Низкий	4 месяца назад
	GHSA-mp66-rx49-f278 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte of the remaining skb->data contains the return status. However, parameter data has previously been pulled in hci_event_func(), which may leave the skb empty. If so, using skb->data[0] for the return status uses un-init memory. The fix is to check skb->len before using skb->data.		0% Низкий	4 месяца назад
	RLSA-2026:1690 Important: kernel security update			около 2 месяцев назад
	ELSA-2026-1690 ELSA-2026-1690: kernel security update (IMPORTANT)			около 2 месяцев назад
	ELSA-2026-50006 ELSA-2026-50006: Unbreakable Enterprise kernel security update (IMPORTANT)			2 месяца назад
	openSUSE-SU-2026:20145-1 Security update for the Linux Kernel			около 2 месяцев назад
	SUSE-SU-2026:0293-1 Security update for the Linux Kernel			около 2 месяцев назад
	SUSE-SU-2026:0315-1 Security update for the Linux Kernel			около 2 месяцев назад
	SUSE-SU-2026:0281-1 Security update for the Linux Kernel			2 месяца назад
	SUSE-SU-2026:0278-1 Security update for the Linux Kernel			2 месяца назад

Уязвимостей на страницу