PT-2025-38334 · Linux+6 · Linux Kernel+6

Published

2022-09-29

·

Updated

2025-11-18

·

CVE-2022-50386

CVSS v3.1

8.0

High

VectorAV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a use-after-free vulnerability in the Bluetooth L2CAP implementation. The vulnerability occurs due to a flaw in handling channel destruction and can lead to a kernel crash. The fix involves using l2cap chan hold unless zero() after calling l2cap get chan blah() to prevent the use-after-free condition.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025:19102
ALSA-2025:19103
ALSA-2025_16880
ALSA-2025_18281
ALSA-2025_19102
ALSA-2025_19103
ALSA-2025_19409
BDU:2026-01343
CESA-2025_19102
CESA-2025_19103
CVE-2022-50386
INFSA-2025_19102
INFSA-2025_19103
OESA-2025-2468
RHSA-2025:19102
RHSA-2025:19103
RHSA-2025:21083
RHSA-2025:21091
RHSA-2025:21136
RHSA-2025:22095
RHSA-2025:22124
RHSA-2025_19102
RHSA-2025_19103
SUSE-SU-2025:03613-1
SUSE-SU-2025:03614-1
SUSE-SU-2025:03615-1
SUSE-SU-2025:03626-1
SUSE-SU-2025:03628-1
SUSE-SU-2025:03652-1
SUSE-SU-2025:03653-1
SUSE-SU-2025:03656-1
SUSE-SU-2025:03662-1
SUSE-SU-2025:3684-1
SUSE-SU-2025:3703-1
SUSE-SU-2025:3716-1
SUSE-SU-2025:3761-1
SUSE-SU-2025:4123-1

Affected Products

Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Rocky Linux
Suse