Vulnerability in Linux Kernel Bluetooth L2CAP Handling
CVE-2026-45835

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 May 2026

What is CVE-2026-45835?

A vulnerability in the Bluetooth Low Energy (BLE) stack within the Linux kernel can lead to a null pointer dereference during the handling of L2CAP connections. Specifically, the issue arises within the function responsible for initiating new L2CAP connections, where a missing null guard can cause the system to encounter a fatal error, potentially affecting device stability and security. This vulnerability has been addressed by incorporating similar null checks that are already present in corresponding functions, thereby enhancing the robustness of Bluetooth operations in the Linux kernel.

Affected Version(s)

Linux 80808e431e1ef25856457de82ce141bed6a6313a

Linux 80808e431e1ef25856457de82ce141bed6a6313a < 741e6024e31587b0c021b6616a9e428a4ea0b64a

References

https://git.kernel.org/stable/c/ab77c8bc30269bee15d917059...

https://git.kernel.org/stable/c/bc3bb9f40da8e53896abc2d29...

https://git.kernel.org/stable/c/741e6024e31587b0c021b6616...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-45835 Data

JSON