Bluetooth L2CAP Channel Closure Issue in Linux Kernel
CVE-2026-53358

Currently unrated

Key Information:

Vendor

Linux

Status
Vendor
CVE Published:
2 July 2026

What is CVE-2026-53358?

A vulnerability in the Linux Kernel affects Bluetooth L2CAP channel management. The issue arises during the cleanup of listening channels when the channel closure function is not executed correctly under the expected lock hierarchy. Instead of closing the channel directly, the system schedules a timeout to manage closure asynchronously, maintaining the correct locking order. This prevents potential deadlocks and ensures safe channel termination. Proper handling of the channel connection state is crucial, especially as the L2CAP connection processes channels and cleans up resources.

Affected Version(s)

Linux 3df91ea20e744344100b10ae69a17211fcf5b207 < 3634cbdc2eb414b69ffa752ddbe5e0458518e321

Linux 3df91ea20e744344100b10ae69a17211fcf5b207

Linux 3df91ea20e744344100b10ae69a17211fcf5b207

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.