CVE-2023-54164

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to Bluetooth ISO (Isochronous) connections. Specifically, the issue involves incorrect locking and validity checks concerning the sk state variable and the associated connection (conn). This can lead to a race condition where operations checking or updating sk state and accessing conn may occur without the necessary lock protection. The incorrect locking order can potentially allow iso conn del to occur during iso connect cis/bis, leading to a null pointer dereference and a kernel panic. The trace logs indicate that the sk state can be in an inconsistent state (e.g., BT CONNECT when it should be BT CLOSED) due to the timing of iso chan del.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54164

SUSE-SU-2026:0263-1

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

CVE-2023-54164

Related Identifiers

Affected Products

References · 2094