Lucene search
+L

20 matches found

CVE
CVE
added 2026/07/02 1:43 p.m.41 views

CVE-2026-53357

CVE-2026-53357 triggers a use-after-free in the Linux kernel Bluetooth stack (l2cap) when closing a listening socket: bt_accept_dequeue() temporarily holds the child, then cleanup_listen() may operate on a sk that has already been freed by l2cap_conn_del() during an HCI disconnect. The race occur...

5.8AI score0.00165EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hcisync: Fixed UAF in hcidisconnectallsync A use-after-free can occur in hcidisconnectallsync if a connection is deleted due to concurrent processing of a controller event. To prevent this, the code now attempts to...

5.9AI score0.00161EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/02/25 12:28 a.m.6 views

kernel: Linux kernel Bluetooth: Denial of Service due to use-after-free in connection handling

A flaw was found in the Linux kernel's Bluetooth subsystem. A use-after-free UAF vulnerability exists in the hcidisconnectallsync function. This can occur if a Bluetooth connection is deleted while a controller event is being processed concurrently. A local attacker could potentially exploit this...

5.8AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/16 12:4 p.m.9 views

kernel: Linux kernel Bluetooth: Denial of Service due to use-after-free in connection handling

A flaw was found in the Linux kernel's Bluetooth subsystem. A use-after-free UAF vulnerability exists in the hcidisconnectallsync function. This can occur if a Bluetooth connection is deleted while a controller event is being processed concurrently. A local attacker could potentially exploit this...

5.8AI score0.00161EPSS
Exploits0References5
OSV
OSV
added 2026/01/08 9:25 a.m.19 views

CLSA-2026-1767864313 kernel: Fix of 46 CVEs

mm: hugetlb: fix UAF in hugetlbhandleuserfault CVE-2022-50630 - drm/amdkfd: fix potential kgdmem UAFs CVE-2023-53816 - net/mlx5e: Fix deadlock in tc route query code CVE-2023-53591 - PCI: Fix pcideviceispresent for VFs by checking PF CVE-2022-50636 - wifi: ath11k: fix monitor mode bringup crash...

7.8CVSS5.9AI score0.00272EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 11:16 a.m.9 views

CVE-2023-53762

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in hcidisconnectallsync Use-after-free can occur in hcidisconnectallsync if a connection is deleted by concurrent processing of a controller event. To prevent this the code now tries to iterate over th...

7CVSS5.4AI score0.00161EPSS
Exploits0References4
NVD
NVD
added 2025/12/08 2:15 a.m.6 views

CVE-2023-53762

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in hcidisconnectallsync Use-after-free can occur in hcidisconnectallsync if a connection is deleted by concurrent processing of a controller event. To prevent this the code now tries to iterate over th...

0.00161EPSS
Exploits0References3
OSV
OSV
added 2025/12/08 2:15 a.m.5 views

UBUNTU-CVE-2023-53762

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in hcidisconnectallsync Use-after-free can occur in hcidisconnectallsync if a connection is deleted by concurrent processing of a controller event. To prevent this the code now tries to iterate over th...

5.8AI score0.00161EPSS
Exploits0References6
OSV
OSV
added 2025/12/08 1:19 a.m.4 views

CVE-2023-53762 Bluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in hcidisconnectallsync Use-after-free can occur in hcidisconnectallsync if a connection is deleted by concurrent processing of a controller event. To prevent this the code now tries to iterate over th...

6.5AI score0.00161EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from post-release reuse in hcidisconnectallsync, which could lead to memory security issues...

8.6AI score0.00161EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-53762

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: hcisync: Fix UAF in hcidisconnectallsync Use-after-free can occur in hcidisconnectallsync if a connection is deleted by concurrent processing of a...

5.9AI score0.00161EPSS
Exploits0References4
OSV
OSV
added 2025/12/04 10:4 a.m.8 views

SUSE-SU-2025:4320-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50327: ACPI: processor: idle: Check acpifetchacpidev return value bsc1249859. - CVE-2022-50334: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam bsc1249857. ...

7.8CVSS9.2AI score0.21314EPSS
Exploits0References417
SUSE Linux
SUSE Linux
added 2025/11/19 1:12 p.m.8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50327: ACPI: processor: idle: Check acpifetchacpidev return value bsc1249859. CVE-2022-50334: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam bsc1249857...

8.8CVSS8.9AI score0.21314EPSS
Exploits0References734
OSV
OSV
added 2025/11/19 1:12 p.m.2 views

SUSE-SU-2025:4139-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50327: ACPI: processor: idle: Check acpifetchacpidev return value bsc1249859. - CVE-2022-50334: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam bsc124985...

7.8CVSS6.4AI score0.21314EPSS
Exploits0References366
OSV
OSV
added 2025/10/07 4:15 p.m.9 views

AZL-76422 CVE-2023-53673 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: call disconnect callback before deleting conn In hcicsdisconnect, we do hciconndel even if disconnection failed. ISO, L2CAP and SCO connections refer to the hciconn without hciconnget, so disconncfm must be...

7.8CVSS5.5AI score0.0017EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/07/02 1:30 p.m.6 views

kernel: Bluetooth: Fix use after free in hci_send_acl

A vulnerability was found in the Linux kernel's Bluetooth subsystem in the hcidisconnphylinkcompleteevt function. Improper cleanup and reference handling can lead to a connection object, hcon, being freed and then later accessed during a subsequent function call. This issue can lead to a...

7.8CVSS6.8AI score0.00247EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/02 6:48 a.m.6 views

kernel: Bluetooth: Fix use after free in hci_send_acl

A vulnerability was found in the Linux kernel's Bluetooth subsystem in the hcidisconnphylinkcompleteevt function. Improper cleanup and reference handling can lead to a connection object, hcon, being freed and then later accessed during a subsequent function call. This issue can lead to a...

7.8CVSS6.8AI score0.00247EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/02 4:39 a.m.16 views

kernel: Bluetooth: Fix use after free in hci_send_acl

A vulnerability was found in the Linux kernel's Bluetooth subsystem in the hcidisconnphylinkcompleteevt function. Improper cleanup and reference handling can lead to a connection object, hcon, being freed and then later accessed during a subsequent function call. This issue can lead to a...

7.8CVSS6.8AI score0.00247EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/07/20 12:0 a.m.5 views

PT-2025-41117

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the Bluetooth implementation where the disconnect callback is called after the connection has been deleted. Specifically, in the hci cs disconnect...

7.8CVSS7.5AI score0.0017EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/07/20 10:23 p.m.12 views

kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan

A use-after-free flaw was found in hcisendacl in the bluetooth host controller interface HCI in Linux kernel, where a local attacker with an access rights could cause a denial of service problem on the system The issue results from the object hchan, freed in hcidisconnloglinkcompleteevt, yet stil...

7.8CVSS6.7AI score0.00819EPSS
Exploits1References7
Rows per page
Query Builder