216.73.217.176

CVE-2026-46056

· Published 27/05/2026 14:17 · Modified 27/05/2026 14:48

Labels: CVE-2026-46056 2026-05-27416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2026-46056

Essential information

Published
27/05/2026 14:17
Modified
27/05/2026 14:48
Author
Creator
CVSS
8.8 HIGH (v3.1)
CISA KEV
No
CWE
CWE-416
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: fix potential UAF in SSP passkey handlers hci_conn lookup and field access must be covered by hdev lock in hci_user_passkey_notify_evt() and hci_keypress_notify_evt(), otherwise the connection can be freed concurrently. Extend the hci_dev_lock critical section to cover all conn usage in both handlers. Keep the existing keypress notification behavior unchanged by routing the early exits through a common unlock path.

NVD status

Status
Modified — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
nist-nvd-api
NVD
View on NVD

Affected products (CPE)

ProductCPE
linux / linux kernel cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

References