Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Bluetooth vhci Debugfs Use-After-Free Vulnerability

Vulnerability

A use-after-free vulnerability has been addressed in the Linux kernel's Bluetooth Virtual Host Controller Interface (VHCI) driver. This issue arose because debugfs files were created but not properly removed before the associated data structures were freed, leading to potential access violations. The vulnerability affected several versions of the Linux kernel.

Impact

Exploitation of this vulnerability could lead to use-after-free errors, allowing for memory access violations.

Reproduction

The vulnerability can be reproduced by creating a Bluetooth VHCI device, which automatically generates debugfs files under the device's debugfs directory. These files can be accessed after the VHCI device is released, but before the debugfs directory is cleared, causing a use-after-free condition.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Sep 19, 2025, 4:38 PM
Updated: Sep 19, 2025, 4:38 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
0.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.