๐Ÿ” CVE Alert

CVE-2026-53358

UNKNOWN 0.0

Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen()

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen() l2cap_chan_close() removes the channel from conn->chan_l, which must be done under conn->lock. cleanup_listen() runs under the parent sk_lock, so acquiring conn->lock would invert the established conn->lock -> chan->lock -> sk_lock order. Instead of calling l2cap_chan_close() directly, schedule l2cap_chan_timeout with delay 0 to close the channel asynchronously. The timeout handler already acquires conn->lock and chan->lock in the correct order. The timer is only armed when chan->conn is still set: if it is already NULL, l2cap_conn_del() has already processed this channel (l2cap_chan_del + l2cap_sock_teardown_cb + l2cap_sock_close_cb), so there is nothing left to do. If l2cap_conn_del() races in after the timer is armed, __clear_chan_timer() inside l2cap_chan_del() cancels it; if the timer has already fired, the handler returns harmlessly because chan->conn was cleared.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Jul 2, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
3df91ea20e744344100b10ae69a17211fcf5b207 < 3634cbdc2eb414b69ffa752ddbe5e0458518e321 3df91ea20e744344100b10ae69a17211fcf5b207 < e1c100e2d61bd8c718b7d91fe3e050780a9bf72d 3df91ea20e744344100b10ae69a17211fcf5b207 < deb8493a8fa599f6c95e2465b12bfdfb7f94a1d9 3df91ea20e744344100b10ae69a17211fcf5b207 < 89dec92041717b027216e110599e4f6d6c921b79 3df91ea20e744344100b10ae69a17211fcf5b207 < 50dfec218808b148ab4247b1858031b7a32015c5 3df91ea20e744344100b10ae69a17211fcf5b207 < 859d3ace791ed878ae9ba5522c7844d960da8f88 3df91ea20e744344100b10ae69a17211fcf5b207 < 7555fd885a0603f50e49a655850a1f2bd8a25398 3df91ea20e744344100b10ae69a17211fcf5b207 < 8c8e620467a7b51562dbcefbd1f09f288d7d710d
Linux / Linux
3.4

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/3634cbdc2eb414b69ffa752ddbe5e0458518e321 git.kernel.org: https://git.kernel.org/stable/c/e1c100e2d61bd8c718b7d91fe3e050780a9bf72d git.kernel.org: https://git.kernel.org/stable/c/deb8493a8fa599f6c95e2465b12bfdfb7f94a1d9 git.kernel.org: https://git.kernel.org/stable/c/89dec92041717b027216e110599e4f6d6c921b79 git.kernel.org: https://git.kernel.org/stable/c/50dfec218808b148ab4247b1858031b7a32015c5 git.kernel.org: https://git.kernel.org/stable/c/859d3ace791ed878ae9ba5522c7844d960da8f88 git.kernel.org: https://git.kernel.org/stable/c/7555fd885a0603f50e49a655850a1f2bd8a25398 git.kernel.org: https://git.kernel.org/stable/c/8c8e620467a7b51562dbcefbd1f09f288d7d710d