CVE-2023-53145

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53145
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53145.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-53145
Downstream
Related
Published
2025-05-10T14:19:14.932Z
Modified
2026-04-03T13:14:29.155083916Z
Summary
Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition
Details

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition

In btsdioprobe, the data->work is bound with btsdiowork. It will be started in btsdiosendframe.

If the btsdioremove runs with a unfinished work, there may be a race condition that hdev is freed but used in btsdiowork. Fix it by canceling the work before do cleanup in btsdio_remove.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53145.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ddbaf13e3609442b64abb931ac21527772d87980
Fixed
6c3653627397a0d6eab19b20a59423e118985a6b
Fixed
3efcbf25e5ab4d4ad1b7e6ba0869ff85540e3f6e
Fixed
a6650d27ab2c12a8ee750f396edb5ac8b4558b2e
Fixed
746b363bef41cc159c051c47f9e30800bc6b520d
Fixed
a5c2a467e9e789ae0891de55b766daac52e3b7b3
Fixed
179c65828593aff1f444e15debd40a477cb23cf4
Fixed
73f7b171b7c09139eb3c6a5677c200dc1be5f318

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53145.json"