CVE-2022-49138

UNKNOWN 0.0

Bluetooth: hci_event: Ignore multiple conn complete events

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: Ignore multiple conn complete events When one of the three connection complete events is received multiple times for the same handle, the device is registered multiple times which leads to memory corruptions. Therefore, consequent events for a single connection are ignored. The conn->state can hold different values, therefore HCI_CONN_HANDLE_UNSET is introduced to identify new connections. To make sure the events do not contain this or another invalid handle HCI_CONN_HANDLE_MAX and checks are introduced. Buglink: https://bugzilla.kernel.org/show_bug.cgi?id=215497

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Feb 26, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

7d0db0a373195385a2e0b19d1f5e4b186fdcffac < aa1ca580e3ffe62a2c5ea1c095b609b2943c5269 7d0db0a373195385a2e0b19d1f5e4b186fdcffac < d5ebaa7c5f6f688959e8d40840b2249ede63b8ed

Linux / Linux

2.6.27

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/aa1ca580e3ffe62a2c5ea1c095b609b2943c5269 git.kernel.org: https://git.kernel.org/stable/c/d5ebaa7c5f6f688959e8d40840b2249ede63b8ed