Vulnerability Lookup

🛡️ CVE-2025-40282

⚪ Unknown ✅ No Known Exploit NVD

N/A

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: 6lowpan: reset link-local header on ipv6 recv path Bluetooth 6lowpan.c netdev has header_ops, so it must set link-local header for RX skb, otherwise things crash, eg. with AF_PACKET SOCK_RAW Add missing skb_reset_mac_header() for uncompressed ipv6 RX path. For the compressed one, it is done in lowpan_header_decompress(). Log: (BlueZ 6lowpan-tester Client Recv Raw - Success) ------ kernel BUG at net/core/skbuff.c:212! Call Trace: ... packet_rcv (net/packet/af_packet.c:2152) ... __local_bh_enable_ip (kernel/softirq.c:407) netif_rx (net/core/dev.c:5648) chan_recv_cb (net/bluetooth/6lowpan.c:294 net/bluetooth/6lowpan.c:359) ------

Details

Severity Unknown

CVSS Score N/A

CVSS Vector N/A

CWE N/A

Public Exploit ✅ No

Source NVD

Published 2025-12-06

Updated 2026-06-02

Modified 2026-04-16

Fix URL N/A

Affected Packages

Software	From version	Fixed in
kernel	6.13.0	6.17.9
unknown	—	—

References

WEB https://git.kernel.org/stable/c/11cd7e068381666f842ad41d1cc58eecd0c75237

WEB https://git.kernel.org/stable/c/3b78f50918276ab28fb22eac9aa49401ac436a3b

WEB https://git.kernel.org/stable/c/4ebb90c3c309e6375dc3e841af92e2a039843e62

WEB https://git.kernel.org/stable/c/70d84e7c3a44b81020a3c3d650a64c63593405bd

WEB https://git.kernel.org/stable/c/973e0271754c77db3e1b6b69adf2de85a79a4c8b

WEB https://git.kernel.org/stable/c/c24ac6cfe4f9a47180a65592c47e7a310d2f9d93

WEB https://git.kernel.org/stable/c/d566e9a2bfc848941b091ffd5f4e12c4e889d818

WEB https://git.kernel.org/stable/c/ea46a1d217bc82e01cf3d0424e50ebfe251e34bf

ADVISORY https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40282.json

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-40282

PACKAGE https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

🔗 NVD 🔗 Mitre

Similar Threats

Unknown ALSA-2023:2458
Unknown ALSA-2023:1703
Unknown ALSA-2023:1566
Unknown ALSA-2023:1470
Unknown ALSA-2023:0951

Vulnerability Monitoring

Stay informed about vulnerabilities in your stack

BotEraser monitors your WordPress installation and notifies you when software you use appears in our vulnerability database.

Set Up Free Alerts →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Stay informed about vulnerabilities in your stack

Company

Resources

Services

Trusted

Subscribe