Use After Free Vulnerability in Bluetooth Stack of Linux Kernel
CVE-2025-40309

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-40309?

A vulnerability exists in the Bluetooth stack of the Linux Kernel, specifically in the handling of SCO connections. This issue is characterized by a use-after-free error in the function sco_conn_free, which could result in memory corruption when an SCO connection is terminated. As the system attempts to free memory that is already in use, this vulnerability may lead to unexpected behavior, potentially allowing an attacker to execute arbitrary code or crash the system. System administrators and security professionals are advised to apply the latest patches to mitigate any risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch