Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Bluetooth L2CAP Use-After-Free Vulnerability

Vulnerability

A use-after-free vulnerability has been fixed in the Bluetooth L2CAP implementation of the Linux kernel. This issue arose in the functions handling disconnection requests and responses, where a channel could be referenced after it was scheduled for destruction. The vulnerability affects the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability could lead to memory corruption issues, potentially allowing for arbitrary code execution or causing a system crash.

Reproduction

The vulnerability can be reproduced by initiating a Bluetooth L2CAP connection and then sending a disconnection request or response. The improper handling of the channel reference can be observed, leading to a use-after-free condition.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been addressed.

Added: Dec 9, 2025, 9:35 PM
Updated: Dec 9, 2025, 9:35 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
1.4
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.