From 971b8c9c34fed6a56c878523a26423a6897d0619 Mon Sep 17 00:00:00 2001
From: Zhang Hai Peng <zhanghaipeng@espressif.com>
Date: Mon, 25 Aug 2025 17:53:29 +0800
Subject: [PATCH] docs(ble): add advisory for CVE-2025-55297 found in Blufi
 example

(cherry picked from commit 1952f0333ca942d742ec6e37842fc0bedcb6ea85)

Co-authored-by: zhanghaipeng <zhanghaipeng@espressif.com>
---
 docs/en/security/vulnerabilities.rst | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/docs/en/security/vulnerabilities.rst b/docs/en/security/vulnerabilities.rst
index 9a44a488e8..ca16093d65 100644
--- a/docs/en/security/vulnerabilities.rst
+++ b/docs/en/security/vulnerabilities.rst
@@ -10,6 +10,17 @@ This page briefly lists all of the vulnerabilities that are discovered and fixed
 CVE-2025
 --------
 
+CVE-2025-55297
+~~~~~~~~~~~~~~
+
+BluFi Example Memory Overflow Vulnerability
+
+* Espressif Advisory: NA (Published on GitHub)
+* Impact: Applicable for ESP-IDF
+* Resolution: Please see advisory for details
+* Advisory pointer: `GHSA-9w88-r2vm-qfc4`_
+
+
 CVE-2025-52471
 ~~~~~~~~~~~~~~
 
@@ -178,7 +189,6 @@ Security Advisory Concerning Wi-Fi Authentication Bypass
 * Impact: Applicable for ESP-IDF
 * Resolution: Please see advisory for details
 
-
 .. _`AR2020-002`: https://www.espressif.com/sites/default/files/advisory_downloads/AR2020-002%20Security%20Advisory%20Concerning%20Wi-Fi%20Authentication%20Bypass%20V1.1%20EN.pdf
 .. _`AR2021-004`: https://www.espressif.com/sites/default/files/advisory_downloads/AR2021-004%20Bluetooth%20Security%20Advisory.pdf
 .. _`AR2021-005`: https://www.espressif.com/sites/default/files/advisory_downloads/AR2021-005%20Security%20Advisory%20on%20BadAlloc%20Vulnerabilities.pdf
@@ -189,3 +199,4 @@ Security Advisory Concerning Wi-Fi Authentication Bypass
 .. _`GHSA-7f7f-jj2q-28wm` : https://github.com/espressif/esp-idf/security/advisories/GHSA-7f7f-jj2q-28wm
 .. _`GHSA-wm57-466g-mhrr` : https://github.com/espressif/esp-idf/security/advisories/GHSA-wm57-466g-mhrr
 .. _`GHSA-hqhh-cp47-fv5g` : https://github.com/espressif/esp-idf/security/advisories/GHSA-hqhh-cp47-fv5g
+.. _`GHSA-9w88-r2vm-qfc4` : https://github.com/espressif/esp-idf/security/advisories/GHSA-9w88-r2vm-qfc4