Zhenghan Wang

**Name of the Vulnerable Software and Affected Versions** Linux Kernel (affected versions not specified) **Description** A Null pointer dereference problem was found in the `ida free()` function in the `lib/idr.c` file of the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return. The problem occurs when the `xas load` function returns a null value, assigning `NULL` to the `bitmap` variable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions through 6.2.9 **Description** The issue is related to a use-after-free vulnerability in the `hci conn cleanup` function in the `net/bluetooth/hci conn.c` module of the Linux kernel. This vulnerability is observed in the `hci conn hash flush` function and is caused by calls to `hci dev put` and `hci conn put`, leading to a double free. This may allow an attacker to escalate their privileges. **Recommendations** For Linux kernel versions through 6.2.9, update to a version that contains a fix for this issue to prevent potential privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.