CVE-2026-46056

🗓️ 27 May 2026 12:57:15Reported by LinuxType

Fix potential use-after-free in SSP passkey handlers by locking all connection usage with hci_dev_lock.

Reporter	Title	Published	Views	Family All 18
ATTACKERKB	CVE-2026-46056	27 May 202612:57	–	attackerkb
CNNVD	Linux kernel 安全漏洞	27 May 202600:00	–	cnnvd
Cvelist	CVE-2026-46056 Bluetooth: hci_event: fix potential UAF in SSP passkey handlers	27 May 202612:57	–	cvelist
Debian CVE	CVE-2026-46056	27 May 202612:57	–	debiancve
EUVD	EUVD-2026-32438	27 May 202612:57	–	euvd
NVD	CVE-2026-46056	27 May 202614:17	–	nvd
OSV	BELL-CVE-2026-46056	28 May 202606:10	–	osv
OSV	DEBIAN-CVE-2026-46056	27 May 202614:17	–	osv
OSV	ECHO-8EB5-B966-95E0	28 May 202604:57	–	osv
OSV	ROOT-OS-DEBIAN-11-CVE-2026-46056 CVE-2026-46056 in rootio-linux - Patched by Root	31 May 202603:58	–	osv

Vulners

CNA

Node

linux linux_kernelRange3.7–6.1.175

linux linux_kernelRange6.2.0–6.6.140

linux linux_kernelRange6.7.0–6.12.86

linux linux_kernelRange6.13.0–6.18.27

linux linux_kernelRange6.19.0–7.0.4

linux linux_kernelRange7.1.0–7.1-rc1

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/bluetooth/hci_event.c"
    ],
    "versions": [
      {
        "version": "92a25256f142d55e25f9959441cea6ddeabae57e",
        "lessThan": "b6ae482f88654db407c8c17619d4b62959b903ef",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "92a25256f142d55e25f9959441cea6ddeabae57e",
        "lessThan": "204028af77a265e31ceb4ba7f643349a3cca72b2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "92a25256f142d55e25f9959441cea6ddeabae57e",
        "lessThan": "01a6431766c35dfedb86e0cb5d3fc80c6d604a47",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "92a25256f142d55e25f9959441cea6ddeabae57e",
        "lessThan": "e08d75753db17aa943d7622f09d9c217b5bfd3b8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "92a25256f142d55e25f9959441cea6ddeabae57e",
        "lessThan": "8c6443bb9257b780986fb67ec08565bf48ecb8d7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "92a25256f142d55e25f9959441cea6ddeabae57e",
        "lessThan": "85fa3512048793076eef658f66489112dcc91993",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/bluetooth/hci_event.c"
    ],
    "versions": [
      {
        "version": "3.7",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.7",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.175",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.140",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.86",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.27",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0.4",
        "lessThanOrEqual": "7.0.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.1-rc1",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/85fa3512048793076eef658f66489112dcc91993
git	www.git.kernel.org/stable/c/01a6431766c35dfedb86e0cb5d3fc80c6d604a47
git	www.git.kernel.org/stable/c/8c6443bb9257b780986fb67ec08565bf48ecb8d7
git	www.git.kernel.org/stable/c/b6ae482f88654db407c8c17619d4b62959b903ef
git	www.git.kernel.org/stable/c/e08d75753db17aa943d7622f09d9c217b5bfd3b8
git	www.git.kernel.org/stable/c/204028af77a265e31ceb4ba7f643349a3cca72b2

01 Jun 2026 17:17Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.18.8

EPSS0.0003