Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hciqca: Fixed the driver shutdown when the serdev is closed. The driver shutdown callback which sends EDLSOCRESET to the device via serdev should not be invoked when the HCI device is not open e.g., if hcidevopensyn...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989210)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989210 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989139)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989139 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer lis...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989320)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989320 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer lis...

Linux Distros Unpatched Vulnerability : CVE-2022-48878

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which...

SUSE CVE-2022-49555

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer list being corrupted, which usually happens when a timer is freed while still active. This is commonly triggered by code calling deltim...

DEBIAN-CVE-2022-49555

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer list being corrupted, which usually happens when a timer is freed while still active. This is commonly triggered by code calling deltim...

UBUNTU-CVE-2022-49555

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer list being corrupted, which usually happens when a timer is freed while still active. This is commonly triggered by code calling deltim...

CVE-2022-49555 Bluetooth: hci_qca: Use del_timer_sync() before freeing

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer list being corrupted, which usually happens when a timer is freed while still active. This is commonly triggered by code calling deltim...

OESA-2024-2445 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Fix driver shutdown on closed serdev The driver shutdown callback which sends EDLSOCRESET to the device over serdev should not be invoked when...

The vulnerability of the hci_qca component in the Linux operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the hciqca component in the Linux operating system’s kernel is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

DEBIAN-CVE-2023-23002

In the Linux kernel before 5.16.3, drivers/bluetooth/hciqca.c misinterprets the devmgpiodgetindexoptional return value expects it to be NULL in the error case, whereas it is actually an error pointer...

AZL-25610 CVE-2023-23002 affecting package kernel for versions less than 5.15.102.1-1

In the Linux kernel before 5.16.3, drivers/bluetooth/hciqca.c misinterprets the devmgpiodgetindexoptional return value expects it to be NULL in the error case, whereas it is actually an error pointer...

PT-2023-35189 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.90 Description: A potential security issue has been identified in the Linux Kernel, related to the hci qca driver shutdown on closed serdev. The actual impact and attack plausibility have not yet been...

PT-2023-9333 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.1.0-rt5-00325-g8a5f56bcfcca 8 Description: The issue is related to a use-after-free vulnerability in the Linux kernel, specifically in the hci qca driver. This vulnerability occurs when the driver shutdown...

PT-2022-6417 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.16.3 Description: The issue is related to the misinterpretation of the devm gpiod get index optional return value in the drivers/bluetooth/hci qca.c file of the Linux kernel, which can lead to a denial of...