-

CVE-2023-54214

EPSS 0.05%
Veröffentlicht 30.12.2025 12:11:11
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

Bluetooth: L2CAP: Fix potential user-after-free

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: Fix potential user-after-free

This fixes all instances of which requires to allocate a buffer calling
alloc_skb which may release the chan lock and reacquire later which
makes it possible that the chan is disconnected in the meantime.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < b2fde8cb2a25125111f2144604e0e7c0ebcc4bba

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < a6a7d1541fefddf7ca0cfb34c1bff63ff809cc49

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < 60aaccf16d1e099c16bebfb96428ae762cb528f7

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < b8ed41cc04fb74005aa51d17865ca3d022760335

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < 31a288a4df7f6a28e65da22a4ab2add4a963738e

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < 64e28ecf44e46de9f01915a4146706a21c3469d2

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < 994e3e18908f5c4a12d07b44018e6aa85f071048

Status affected

Version a6a5568c03c4805d4d250f6bd9d468eeeb4ea059

Version < df5703348813235874d851934e957c3723d71644

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.5

Status affected

Version 0

Version < 3.5

Status unaffected

Version <= 4.14.*

Version 4.14.308

Status unaffected

Version <= 4.19.*

Version 4.19.276

Status unaffected

Version <= 5.4.*

Version 5.4.235

Status unaffected

Version <= 5.10.*

Version 5.10.173

Status unaffected

Version <= 5.15.*

Version 5.15.99

Status unaffected

Version <= 6.1.*

Version 6.1.16

Status unaffected

Version <= 6.2.*

Version 6.2.3

Status unaffected

Version <= *

Version 6.3

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.144

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/b2fde8cb2a25125111f2144604e0e7c0ebcc4bba

https://git.kernel.org/stable/c/a6a7d1541fefddf7ca0cfb34c1bff63ff809cc49

https://git.kernel.org/stable/c/60aaccf16d1e099c16bebfb96428ae762cb528f7

https://git.kernel.org/stable/c/b8ed41cc04fb74005aa51d17865ca3d022760335

https://git.kernel.org/stable/c/31a288a4df7f6a28e65da22a4ab2add4a963738e

https://git.kernel.org/stable/c/64e28ecf44e46de9f01915a4146706a21c3469d2

https://git.kernel.org/stable/c/994e3e18908f5c4a12d07b44018e6aa85f071048

https://git.kernel.org/stable/c/df5703348813235874d851934e957c3723d71644

https://nvd.nist.gov/vuln/detail/CVE-2023-54214

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54214

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54214

EUVD