Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/06/24 4:30 p.m.26 views

CVE-2026-53072 Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix locking in hciconnrequestevt with HCIPROTODEFER When protocol sets HCIPROTODEFER, hciconnrequestevt calls hciconnectcfmconn without hdev-lock. Generally hciconnectcfm assumes it is held, and if conn is deleted...

8.8CVSS0.00247EPSS
Exploits0References8
Redos
Redos
added 2026/01/19 12:0 a.m.4 views

ROS-20260119-7344

A vulnerability in the ncihcicreatepipe and ncihciconnectgate functions of the Linux operating system kernel is related to writing beyond buffer boundaries in memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected...

7.8CVSS8.1AI score0.00231EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/25 3:9 p.m.4 views

CVE-2023-54038

A flaw was found in the Linux kernel's Bluetooth Host Controller Interface HCI connection handling. A local user could exploit this vulnerability when the hciconnectsco function returns a NULL pointer instead of an error pointer when no link is present. This improper handling of exceptional...

5.5CVSS5.7AI score0.00152EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-54038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: hciconn: return ERRPTR instead of NULL when there is no link hciconnectsco currently returns NULL when there is no link i.e. when hciconnlink returns...

5.4AI score0.00152EPSS
Exploits0References3
NVD
NVD
added 2025/12/24 11:15 a.m.5 views

CVE-2023-54038

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciconn: return ERRPTR instead of NULL when there is no link hciconnectsco currently returns NULL when there is no link i.e. when hciconnlink returns NULL. scoconnect expects an ERRPTR in case of any error see line 266...

0.00152EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/24 10:56 a.m.26 views

CVE-2023-54038 Bluetooth: hci_conn: return ERR_PTR instead of NULL when there is no link

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciconn: return ERRPTR instead of NULL when there is no link hciconnectsco currently returns NULL when there is no link i.e. when hciconnlink returns NULL. scoconnect expects an ERRPTR in case of any error see line 266...

0.00152EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.2 views

PT-2025-8847

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory corruption issue exists due to insufficient bounds checking in the nci hci create pipe function. The pipe variable, which is a u8 value coming from the network, can cause memory...

7.8CVSS6.8AI score0.00231EPSS
Exploits0
Rows per page
Query Builder