CVE-2023-53827 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}

Similar to commit d0be8347c623 ("Bluetooth: L2CAP: Fix use-after-free
caused by l2cap_chan_put"), just use l2cap_chan_hold_unless_zero to
prevent referencing a channel that is about to be destroyed.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00036.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< f2d38e77aa5f3effc143e7dd24da8acf02925958
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< 1351551aa9058e07a20a27a158270cf84fcde621
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< c02421992505c95c7f3c9ad59ee35e22eac60988
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< d9ba36c22a7bb09d6bac4cc2f243eff05da53f43
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< ac6725a634f7e8c0330610a8527f20c730b61115
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< 348d446762e7c70778df8bafbdf3fa0df2123f58
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284
`61d6ef3e3408cdf7e622646fb90a9f7f9560b943`	affected	< a2a9339e1c9deb7e1e079e12e27a0265aea8421a

Linux

affected

Version	Status	Constraints
`3.5`	affected	—
`0`	unaffected	< 3.5
`4.14.313`	unaffected	≤ 4.14.*
`4.19.281`	unaffected	≤ 4.19.*
`5.4.241`	unaffected	≤ 5.4.*
`5.10.178`	unaffected	≤ 5.10.*
`5.15.108`	unaffected	≤ 5.15.*
`6.1.25`	unaffected	≤ 6.1.*
`6.2.12`	unaffected	≤ 6.2.*
`6.3`	unaffected	≤ *

No data.

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/1351551aa9058e07a20a27a158270cf84fcde621
https://git.kernel.org/stable/c/348d446762e7c70778df8bafbdf3fa0df2123f58
https://git.kernel.org/stable/c/a2a9339e1c9deb7e1e079e12e27a0265aea8421a
https://git.kernel.org/stable/c/ac6725a634f7e8c0330610a8527f20c730b61115
https://git.kernel.org/stable/c/c02421992505c95c7f3c9ad59ee35e22eac60988
https://git.kernel.org/stable/c/d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284
https://git.kernel.org/stable/c/d9ba36c22a7bb09d6bac4cc2f243eff05da53f43
https://git.kernel.org/stable/c/f2d38e77aa5f3effc143e7dd24da8acf02925958
https://lore.kernel.org/linux-cve-announce/2025120952-CVE-2023-53827-b045@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53827
https://www.cve.org/CVERecord?id=CVE-2023-53827

History

Wed, 10 Dec 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025120952-CVE-2023-53827-b045@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53827 https://www.cve.org/CVERecord?id=CVE-2023-53827
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}` threat_severity `Important`

Tue, 09 Dec 2025 02:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} Similar to commit d0be8347c623 ("Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put"), just use l2cap_chan_hold_unless_zero to prevent referencing a channel that is about to be destroyed.
Title		Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/1351551aa9058e07a20a27a158270cf84fcde621 https://git.kernel.org/stable/c/348d446762e7c70778df8bafbdf3fa0df2123f58 https://git.kernel.org/stable/c/a2a9339e1c9deb7e1e079e12e27a0265aea8421a https://git.kernel.org/stable/c/ac6725a634f7e8c0330610a8527f20c730b61115 https://git.kernel.org/stable/c/c02421992505c95c7f3c9ad59ee35e22eac60988 https://git.kernel.org/stable/c/d82a439c3cfdb28aa7e82e2e849c5c4dd9fca284 https://git.kernel.org/stable/c/d9ba36c22a7bb09d6bac4cc2f243eff05da53f43 https://git.kernel.org/stable/c/f2d38e77aa5f3effc143e7dd24da8acf02925958

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-12-09T01:29:40.794Z

Updated: 2026-01-05T10:33:00.193Z

Reserved: 2025-12-09T01:27:17.825Z

Link: CVE-2023-53827

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-12-09T16:17:21.570

Modified: 2025-12-09T18:37:13.640

Link: CVE-2023-53827

Redhat

Severity : Important

Publid Date: 2025-12-09T00:00:00Z

Links: CVE-2023-53827 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object