Luke Wang

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** A vulnerability in the Linux kernel has been resolved, related to the Bluetooth driver btnxpuart. When unloading the driver, its associated timer is deleted. However, if the timer is modified at the same time, it can lead to a kernel panic. The issue is resolved by using timer shutdown sync() instead of del timer sync() to prevent rearming. The vulnerability can cause a kernel panic, resulting in the system crashing. **Recommendations** To resolve the issue, update the Linux kernel to version 6.6.50 or later. If updating is not possible, consider disabling the btnxpuart driver to prevent the vulnerability from being exploited. As a temporary workaround, consider disabling the `call timer fn.isra.0()` function until a patch is available. Restrict access to the vulnerable `btnxpuart` driver to minimize the risk of exploitation. Avoid using the `del timer sync()` function in the affected API endpoint until the issue is resolved.