CVE-2026-5068

CVE-2026-5068 affects Zephyr in the Bluetooth host L2CAP LE CoC path. When segmentation is enabled (chan_ops.alloc_buf) and the RX pool’s user_data_size is

SUSE CVE-2026-31408

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix use-after-free in scorecvframe due to missing sockhold scorecvframe reads conn-sk under scoconnlock but immediately releases the lock without holding a reference to the socket. A concurrent close can free the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of post-release reuse of Bluetooth L2CAP...

kernel: Bluetooth: L2CAP: Fix use-after-free

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free Fix potential use-after-free in l2caplecommandrej...

Actions ATS2815 输入验证错误漏洞

The Actions ATS2815 is a Bluetooth chip from Actions. An input validation error vulnerability exists in the Actions ATS2815 that stems from the product's Bluetooth Classic module not properly handling consecutive LMPfeaturesres packets. An attacker could cause a denial of service to the device vi...

Code injection

In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Bluetooth address of target device and paired user's smartphone...