3 matches found
CVE-2022-48878 Bluetooth: hci_qca: Fix driver shutdown on closed serdev
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when HCI device is not open e.g. if hcidevopensync failed, because the...
CVE-2022-48878 Bluetooth: hci_qca: Fix driver shutdown on closed serdev
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when HCI device is not open e.g. if hcidevopensync failed, because the...
CVE-2022-48878
CVE-2022-48878 affects the Linux kernel Bluetooth stack (hci_qca) and the serdev shutdown path. The issue arises when the HCI device is not open (e.g., hci_dev_open_sync() failed) and the shutdown callback may still attempt to send EDL_SOC_RESET over serdev, potentially triggering a use-after-fre...