Bluetooth Vulnerability in Linux Kernel Affecting ERTM Resources
CVE-2026-31498

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31498?

A vulnerability exists in the Linux kernel's Bluetooth implementation, specifically in the L2CAP layer. The issue arises from the mismanagement of resources during the re-initialization of ERTM channels, leading to memory leaks. This occurs when reconfiguration requests are processed without freeing previously allocated resources. Additionally, a lack of validation for the minimum value of the remote maximum payload size can result in a zero-length packet, causing an infinite loop that exhausts system memory. Proper safeguards and code modifications are essential to mitigate these risks and enhance system stability.

Affected Version(s)

Linux 96298f640104e4cd9a913a6e50b0b981829b94ff < 9760b83cfd24b38caee663f429011a0dd6064fa9

Linux 96298f640104e4cd9a913a6e50b0b981829b94ff

References

https://git.kernel.org/stable/c/9760b83cfd24b38caee663f42...

https://git.kernel.org/stable/c/de37e2655b7abc3f59254c6b7...

https://git.kernel.org/stable/c/e7aab23b7df89a3d754a5f0a7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31498 Data

JSON