Bluetooth Management Vulnerability in Linux Kernel by Linux
CVE-2026-31511

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31511?

A security issue has been identified in the Bluetooth management component of the Linux Kernel, where improper handling of pointers can lead to a dangling pointer scenario. This vulnerability arises when the condition check for 'mgmt_pending_valid' is not executed correctly, particularly when the status is not '-ECANCELED'. As a result, if 'mgmt_pending_free(cmd)' is called, it may lead to the deallocation of memory without properly unlinking it from the list, creating a risk for subsequent memory accesses. This could allow for potential exploitation during list traversals, leading to dereferencing of freed memory, compromising system integrity.

Affected Version(s)

Linux d71b98f253b079cbadc83266383f26fe7e9e103b < 340666172cf747de58c283d2eef1f335f050538b

Linux 302a1f674c00dd5581ab8e493ef44767c5101aab

Linux 302a1f674c00dd5581ab8e493ef44767c5101aab < 3a89c33deffb3cb7877a7ea2e50734cd12b064f2

References

https://git.kernel.org/stable/c/340666172cf747de58c283d2e...

https://git.kernel.org/stable/c/bafec9325d4de26b6c49db75b...

https://git.kernel.org/stable/c/3a89c33deffb3cb7877a7ea2e...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31511 Data

JSON