Tianshu Qiu

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition in the Bluetooth subsystem of the Linux kernel can lead to a use-after-free issue. This occurs when an SCO connection is established and the SCO socket is subsequently released; the `timeout work` is scheduled to determine if the SCO disconnection has timed out. The socket is deallocated, but it is later dereferenced within the `sco sock timeout()` function, resulting in the use-after-free. This flaw may allow an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.