← Back

CVE-2023-53145

nvd nist
Published: May 10, 2025Modified: Jun 17, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition In btsdio_probe, the data->work is bound with btsdio_work. It will be started in btsdio_send_frame. If the btsdio_remove runs with a unfinished work, there may be a race condition that hdev is freed but used in btsdio_work. Fix it by canceling the work before do cleanup in btsdio_remove.

Affected (13)

Products: Linux: Linux Kernel
1 product
Linux Kernel
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Linux
Before 4.14.326
From 4.15 to 4.19.295
From 4.20 to 5.4.257
From 5.11 to 5.15.131
From 5.16 to 6.1.52
From 5.5 to 5.10.195
From 6.2 to 6.3
Version 6.3 rc1
Version 6.3 rc2
Version 6.3 rc3
Version 6.3 rc4
Version 6.3 rc5
Version 6.3 rc6

References (7)

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch

Timeline

No history available yet.