CVE-2023-53252

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's Bluetooth implementation related to the handling of hci conn params and synchronization within hci sync. Specifically, hci update accept list sync iterates over lists and waits for controller events without properly holding a lock, potentially leading to use-after-free conditions when these lists are modified concurrently. The issue can be triggered by scenarios such as adding and removing devices, or through the use of tools like BlueZ mgmt-tester and iso-tester. This can result in a kernel crash, as demonstrated by a KASAN report indicating a slab-use-after-free in hci update passive scan sync.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.