CVE-2026-31393

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the Bluetooth L2CAP implementation. Specifically, the l2cap information rsp() function does not adequately validate the length of the L2CAP INFO RSP payload before accessing it, potentially leading to out-of-bounds reads. This occurs when a truncated L2CAP INFO RSP message with a success result is received. The function l2cap information rsp() is vulnerable. The vulnerable parameters include rsp->data. Specifically, get unaligned le32(rsp->data) and rsp->data[0] are accessed without proper bounds checking.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.