CVE-2023-53827 - Vulnerability Details

- Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}

Description

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}

Similar to commit d0be8347c623 ("Bluetooth: L2CAP: Fix use-after-free
caused by l2cap_chan_put"), just use l2cap_chan_hold_unless_zero to
prevent referencing a channel that is about to be destroyed.

Published: 2025-12-09

Score: 7.0 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< f2d38e77aa5f3effc143e7dd24da8acf02925958
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< 1351551aa9058e07a20a27a158270cf84fcde621
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< c02421992505c95c7f3c9ad59ee35e22eac60988
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< d9ba36c22a7bb09d6bac4cc2f243eff05da53f43
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< ac6725a634f7e8c0330610a8527f20c730b61115
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< 348d446762e7c70778df8bafbdf3fa0df2123f58
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< a2a9339e1c9deb7e1e079e12e27a0265aea8421a

Linux

affected

Version	Status	Constraints
`3.5`	affected	—
`0`	unaffected	< 3.5
`4.14.313`	unaffected	≤ 4.14.*
`4.19.281`	unaffected	≤ 4.19.*
`5.4.241`	unaffected	≤ 5.4.*
`5.10.178`	unaffected	≤ 5.10.*
`5.15.108`	unaffected	≤ 5.15.*
`6.1.25`	unaffected	≤ 6.1.*
`6.2.12`	unaffected	≤ 6.2.*
`6.3`	unaffected	≤ *

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00029.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/1351551aa9058e07a20a27a158270cf84fcde621
https://git.kernel.org/stable/c/348d446762e7c70778df8bafbdf3fa0df2123f58
https://git.kernel.org/stable/c/a2a9339e1c9deb7e1e079e12e27a0265aea8421a
https://git.kernel.org/stable/c/ac6725a634f7e8c0330610a8527f20c730b61115
https://git.kernel.org/stable/c/c02421992505c95c7f3c9ad59ee35e22eac60988
https://git.kernel.org/stable/c/d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284
https://git.kernel.org/stable/c/d9ba36c22a7bb09d6bac4cc2f243eff05da53f43
https://git.kernel.org/stable/c/f2d38e77aa5f3effc143e7dd24da8acf02925958
https://lore.kernel.org/linux-cve-announce/2025120952-CVE-2023-53827-b045@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53827
https://www.cve.org/CVERecord?id=CVE-2023-53827

History

Wed, 10 Dec 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025120952-CVE-2023-53827-b045@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53827 https://www.cve.org/CVERecord?id=CVE-2023-53827
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}` threat_severity `Important`

Tue, 09 Dec 2025 02:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} Similar to commit d0be8347c623 ("Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put"), just use l2cap_chan_hold_unless_zero to prevent referencing a channel that is about to be destroyed.
Title		Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/1351551aa9058e07a20a27a158270cf84fcde621 https://git.kernel.org/stable/c/348d446762e7c70778df8bafbdf3fa0df2123f58 https://git.kernel.org/stable/c/a2a9339e1c9deb7e1e079e12e27a0265aea8421a https://git.kernel.org/stable/c/ac6725a634f7e8c0330610a8527f20c730b61115 https://git.kernel.org/stable/c/c02421992505c95c7f3c9ad59ee35e22eac60988 https://git.kernel.org/stable/c/d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284 https://git.kernel.org/stable/c/d9ba36c22a7bb09d6bac4cc2f243eff05da53f43 https://git.kernel.org/stable/c/f2d38e77aa5f3effc143e7dd24da8acf02925958

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-12-09T01:29:40.794Z

Updated: 2026-05-11T19:52:18.128Z

Reserved: 2025-12-09T01:27:17.825Z

Link: CVE-2023-53827

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2025-12-09T16:17:21.570

Modified: 2026-04-15T00:35:42.020

Link: CVE-2023-53827

Redhat

Severity : Important

Publid Date: 2025-12-09T00:00:00Z

Links: CVE-2023-53827 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Tracking

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object