Lucene search
K

43 matches found

EUVD
EUVD
added 2026/06/24 4:30 p.m.3 views

EUVD-2026-38939

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in l2capecredreconfrsp l2capecredreconfrsp calls l2capchandel without holding l2capchanlock. Every other l2capchandel caller in the file acquires the lock first. A remote BLE device can sen...

5.8AI score0.00146EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/24 4:30 p.m.25 views

CVE-2026-53071 Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in l2capecredreconfrsp l2capecredreconfrsp calls l2capchandel without holding l2capchanlock. Every other l2capchandel caller in the file acquires the lock first. A remote BLE device can sen...

8.8CVSS0.00146EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.6 views

PT-2026-51965

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Bluetooth Logical Link Control and Adaptation Protocol L2CAP implementation. A remote Bluetooth Low Energy BLE device can trigger the issue by sending a specially...

8.8CVSS5.8AI score0.00146EPSS
Exploits0References13
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: L2CAP: fixed the “bad unlock balance” issue in l2capdisconnectrsp. The conn-chanlock is not acquired before l2capgetchanbyscid. If l2capgetchanbyscid returns NULL, then the “bad unlock balance” issue will be trigger...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: smb3: A missing lock occurs when picking the channel. Coverity has identified a point where we should have held the channel lock when accessing the ses channel index. Address-Coverity: 1582039 “Data race condition MISSINGLOCK”...

5.5CVSS6AI score0.00164EPSS
Exploits0References2
CVE
CVE
added 2026/02/18 2:53 p.m.44 views

CVE-2026-23226

CVE-2026-23226 involves a kernel vulnerability in ksmbd where the ksmbd_chann_list xarray was lacking synchronization, allowing a use-after-free in multi-channel sessions between lookup_chann_list() and ksmbd_chann_del. The provided documents confirm the root cause and the fix: the patch adds a n...

8.8CVSS5.2AI score0.00423EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/02/14 5:15 p.m.6 views

CVE-2025-71221

In the Linux kernel, the following vulnerability has been resolved: dmaengine: mmppdma: Fix race condition in mmppdmaresidue Add proper locking in mmppdmaresidue to prevent use-after-free when accessing descriptor list and descriptor contents. The race occurs when multiple threads call txstatus...

7CVSS0.00095EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/14 4:27 p.m.29 views

CVE-2025-71221 dmaengine: mmp_pdma: Fix race condition in mmp_pdma_residue()

In the Linux kernel, the following vulnerability has been resolved: dmaengine: mmppdma: Fix race condition in mmppdmaresidue Add proper locking in mmppdmaresidue to prevent use-after-free when accessing descriptor list and descriptor contents. The race occurs when multiple threads call txstatus...

0.00095EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-20452

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s ksmbd module contains a synchronization issue within the ksmbd chann list xarray. This lack of synchronization can lead to a use-after-free condition in multi-channel...

8.8CVSS7AI score0.00423EPSS
Exploits0References77
RedhatCVE
RedhatCVE
added 2025/12/31 11:32 a.m.3 views

CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

5.8CVSS5.3AI score0.00177EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/31 12:28 a.m.8 views

SUSE CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

5.8CVSS6.6AI score0.00177EPSS
Exploits0References8
EUVD
EUVD
added 2025/12/30 3:30 p.m.3 views

EUVD-2023-60427

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

6.1AI score0.00177EPSS
Exploits0References9
NVD
NVD
added 2025/12/30 1:16 p.m.2 views

CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

0.00177EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.7 views

CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

6AI score0.00177EPSS
Exploits0References10
OSV
OSV
added 2025/12/30 1:16 p.m.4 views

UBUNTU-CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

6AI score0.00177EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/12/30 12:11 p.m.23 views

CVE-2023-54214 Bluetooth: L2CAP: Fix potential user-after-free

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

0.00177EPSS
Exploits0References8
OSV
OSV
added 2025/12/30 12:11 p.m.4 views

CVE-2023-54214 Bluetooth: L2CAP: Fix potential user-after-free

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

6.5AI score0.00177EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.6 views

PT-2025-54043

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's Bluetooth L2CAP implementation that could lead to a user-after-free condition. This issue arises from scenarios where a buffer is allocated using allo...

7.8CVSS7.3AI score0.00465EPSS
Exploits2References901
RedHat Linux
RedHat Linux
added 2025/12/22 5:42 p.m.3 views

kernel: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp conn-chanlock isn't acquired before l2capgetchanbyscid, if l2capgetchanbyscid returns NULL, then 'bad unlock balance' is triggered...

5.5CVSS6.8AI score0.00137EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 3:4 p.m.4 views

kernel: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp conn-chanlock isn't acquired before l2capgetchanbyscid, if l2capgetchanbyscid returns NULL, then 'bad unlock balance' is triggered...

5.5CVSS6.8AI score0.00137EPSS
Exploits0References5
Rows per page
Query Builder