CVE-2026-23461

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's Bluetooth L2CAP implementation, specifically within the l2cap unregister user function. A race condition occurs because l2cap register user and l2cap unregister user do not use the conn->lock mechanism, allowing concurrent access to conn->users and conn->hchan alongside l2cap conn del. This can result in a use-after-free condition and list corruption.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.