CVE-2026-43134
Published: May 6, 2026
Modified: May 11, 2026
CVSS v3.1
8.1
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ This adds a check for encryption key size upon receiving L2CAP_LE_CONN_REQ which is required by L2CAP/LE/CFC/BV-15-C which expects L2CAP_CR_LE_BAD_KEY_SIZE.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 27e2d4c8d28be1d1b4ecfbffab572d7dbd35254d - < 335071c0c3637064ec250481f589075db44fe4e6affected 27e2d4c8d28be1d1b4ecfbffab572d7dbd35254d - < fa6ad76fa8623c0a50d529cd5726fa5d819a3be4affected 27e2d4c8d28be1d1b4ecfbffab572d7dbd35254d - < 9118601ff90b79e8df3c0c98f48ae00c1b02ecefaffected 27e2d4c8d28be1d1b4ecfbffab572d7dbd35254d - < 481ea39b342c347b6ac029f3d418486280be4e45affected 27e2d4c8d28be1d1b4ecfbffab572d7dbd35254d - < ec91078e132179b04e0c3906b599816c056ceaad+3 more versions |
Linux | Linux | affected 3.14unaffected 0 - < 3.14unaffected 5.10.252 - <= 5.10.*unaffected 5.15.202 - <= 5.15.*unaffected 6.1.165 - <= 6.1.*+5 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now