Bluetooth Vulnerability in Linux Kernel Affecting Multiple Products by Various Vendors
CVE-2023-53252

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 September 2025

What is CVE-2023-53252?

A vulnerability in the Linux kernel's Bluetooth stack could lead to unstable behavior and potential crashes. The issue arises from unsafe iteration over connection lists during Bluetooth operations, which can invalidate list cursors and lead to use-after-free errors. By using Read-Copy-Update (RCU) techniques and iterating on a copied list, the kernel mitigates risks of data corruption and enhances the stability of Bluetooth connections. This vulnerability may be triggered under specific conditions, emphasizing the importance of keeping systems updated to the latest kernel versions to ensure protection.

Affected Version(s)

Linux e8907f76544ffe225ab95d70f7313267b1d0c76d < 13ad45ad14df992a6754a130a19abc8c142d54e2

Linux e8907f76544ffe225ab95d70f7313267b1d0c76d

Linux e8907f76544ffe225ab95d70f7313267b1d0c76d < 195ef75e19287b4bc413da3e3e3722b030ac881e

References

https://git.kernel.org/stable/c/13ad45ad14df992a6754a130a...

https://git.kernel.org/stable/c/cef88a0fd8e9c2e838162fbb7...

https://git.kernel.org/stable/c/195ef75e19287b4bc413da3e3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Sep 15, 2025