CVE-2023-53374

HIGH 7.8

Bluetooth: hci_conn: fail SCO/ISO via hci_conn_failed if ACL gone early

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fail SCO/ISO via hci_conn_failed if ACL gone early Not calling hci_(dis)connect_cfm before deleting conn referred to by a socket generally results to use-after-free. When cleaning up SCO connections when the parent ACL is deleted too early, use hci_conn_failed to do the connection cleanup properly. We also need to clean up ISO connections in a similar situation when connecting has started but LE Create CIS is not yet sent, so do it too here.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Sep 18, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

ca1fd42e7dbfcb34890ffbf1f2f4b356776dab6f < 397d58007532644b35fad746da48c41161f32a57 ca1fd42e7dbfcb34890ffbf1f2f4b356776dab6f < e94b898463a62b72a2a8b75dea8936bf4db78e00 ca1fd42e7dbfcb34890ffbf1f2f4b356776dab6f < 3344d318337d9dca928fd448e966557ec5063f85 75e35bd4b7935ceed2aacd82f55940e73bf0b63b

Linux / Linux

6.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/397d58007532644b35fad746da48c41161f32a57 git.kernel.org: https://git.kernel.org/stable/c/e94b898463a62b72a2a8b75dea8936bf4db78e00 git.kernel.org: https://git.kernel.org/stable/c/3344d318337d9dca928fd448e966557ec5063f85