CVE-2022-49136

HIGH 7.8

Bluetooth: hci_sync: Fix queuing commands when HCI_UNREGISTER is set

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix queuing commands when HCI_UNREGISTER is set hci_cmd_sync_queue shall return an error if HCI_UNREGISTER flag has been set as that means hci_unregister_dev has been called so it will likely cause a uaf after the timeout as the hdev will be freed.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Feb 26, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

6a98e3836fa2077b169f10a35c2ca9952d53f987 < 1c69ef84a808676cceb69210addf5df45b741323 6a98e3836fa2077b169f10a35c2ca9952d53f987 < 0b94f2651f56b9e4aa5f012b0d7eb57308c773cf

Linux / Linux

5.17

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/1c69ef84a808676cceb69210addf5df45b741323 git.kernel.org: https://git.kernel.org/stable/c/0b94f2651f56b9e4aa5f012b0d7eb57308c773cf