CVE-2023-53145
Published: May 10, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition In btsdio_probe, the data->work is bound with btsdio_work. It will be started in btsdio_send_frame. If the btsdio_remove runs with a unfinished work, there may be a race condition that hdev is freed but used in btsdio_work. Fix it by canceling the work before do cleanup in btsdio_remove.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected ddbaf13e3609442b64abb931ac21527772d87980 - < 6c3653627397a0d6eab19b20a59423e118985a6baffected ddbaf13e3609442b64abb931ac21527772d87980 - < 3efcbf25e5ab4d4ad1b7e6ba0869ff85540e3f6eaffected ddbaf13e3609442b64abb931ac21527772d87980 - < a6650d27ab2c12a8ee750f396edb5ac8b4558b2eaffected ddbaf13e3609442b64abb931ac21527772d87980 - < 746b363bef41cc159c051c47f9e30800bc6b520daffected ddbaf13e3609442b64abb931ac21527772d87980 - < a5c2a467e9e789ae0891de55b766daac52e3b7b3+2 more versions |
Linux | Linux | affected 2.6.24unaffected 0 - < 2.6.24unaffected 4.14.326 - <= 4.14.*unaffected 4.19.295 - <= 4.19.*unaffected 5.4.257 - <= 5.4.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now