CVE-2023-53827

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}

Similar to commit d0be8347c623 ("Bluetooth: L2CAP: Fix use-after-free
caused by l2cap_chan_put"), just use l2cap_chan_hold_unless_zero to
prevent referencing a channel that is about to be destroyed.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.244-1
fixed
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.158-1
fixed
trixie
6.12.57-1
fixed
trixie (security)
6.12.48-1
fixed
forky
6.17.9-1
fixed
sid
6.17.11-1
fixed
References
https://git.kernel.org/stable/c/1351551aa9058e07a20a27a158270cf84fcde621
https://git.kernel.org/stable/c/348d446762e7c70778df8bafbdf3fa0df2123f58
https://git.kernel.org/stable/c/a2a9339e1c9deb7e1e079e12e27a0265aea8421a
https://git.kernel.org/stable/c/ac6725a634f7e8c0330610a8527f20c730b61115
https://git.kernel.org/stable/c/c02421992505c95c7f3c9ad59ee35e22eac60988
https://git.kernel.org/stable/c/d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284
https://git.kernel.org/stable/c/d9ba36c22a7bb09d6bac4cc2f243eff05da53f43
https://git.kernel.org/stable/c/f2d38e77aa5f3effc143e7dd24da8acf02925958