CVE-2026-31511

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A dangling pointer issue exists in the Bluetooth MGMT component. The problem occurs during the execution of mgmt add adv patterns monitor complete when the condition checking fails to properly execute mgmt pending valid for statuses other than -ECANCELED. This leads to mgmt pending free(cmd) calling kfree(cmd) without first unlinking it from the list. Consequently, subsequent list traversals, such as mgmt pending foreach during mgmt power off or other mgmt pending valid calls, may dereference freed memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.