CVE-2026-43019
Published: May 1, 2026
Modified: May 23, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync hci_conn lookup and field access must be covered by hdev lock in set_cig_params_sync, otherwise it's possible it is freed concurrently. Take hdev lock to prevent hci_conn from being deleted or modified concurrently. Just RCU lock is not suitable here, as we also want to avoid "tearing" in the configuration.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a091289218202bc09d9b9caa8afcde1018584aec - < 66d432e9b45bae7881ffcdb12cd8fd0bf254ef02affected a091289218202bc09d9b9caa8afcde1018584aec - < 7d568fede8eac91161a60b710aa920abe9b0fb9faffected a091289218202bc09d9b9caa8afcde1018584aec - < bad65b4b0a96139f023eadc28a33125963208449affected a091289218202bc09d9b9caa8afcde1018584aec - < a2639a7f0f5bf7d73f337f8f077c19415c62ed2caffected 3a273cd0f47dd672d37736e623849374f9ab9ce9+3 more versions |
Linux | Linux | affected 6.6unaffected 0 - < 6.6unaffected 6.12.81 - <= 6.12.*unaffected 6.18.22 - <= 6.18.*unaffected 6.19.12 - <= 6.19.*+1 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now