CVE-2026-23395

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the Bluetooth L2CAP implementation. The code incorrectly handles multiple L2CAP ECRED CONN REQ requests, potentially leading to an overflow in the l2cap ecred rsp defer function when more than L2CAP ECRED MAX CID (5) channels are allocated. This occurs because the code does not properly validate the command identifier for subsequent requests, violating the Bluetooth specification which requires a unique identifier for each request within a signaling channel. The specification states that the same identifier shall not be used on subsequent requests.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.