CVE-2023-53762

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc1+ #10

Description A use-after-free condition can occur in the Bluetooth stack within the Linux kernel, specifically in the hci disconnect all sync function. This issue arises when a connection is deleted during concurrent processing of a controller event. The code has been updated to iterate over the connection list backwards to ensure proper cleanup and to avoid relying on a cursor, instead utilizing the last element as hci abort conn sync is guaranteed to call hci conn del. A crash log indicates the issue occurs in hci set powered sync.

Recommendations Update to a version newer than 6.5.0-rc1+ #10.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2026:2720

ALSA-2026:2821

CVE-2023-53762

RHSA-2024:2394

RHSA-2026:2720

RHSA-2026:2821

RHSA-2026:3267

RHSA-2026:3358

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Debian

Linux Kernel

Red Hat

Rocky Linux

CVE-2023-53762

Related Identifiers

Affected Products

References · 1475