CVE-2023-54120
- Source
- https://cve.org/CVERecord?id=CVE-2023-54120
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54120.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-54120
- Downstream
- Related
- Published
- 2025-12-24T13:06:40.420Z
- Modified
- 2026-03-20T12:33:27.417764Z
- Summary
- Bluetooth: Fix race condition in hidp_session_thread
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: Fix race condition in hidpsessionthread
There is a potential race condition in hidpsessionthread that may lead to use-after-free. For instance, the timer is active while hidpdeltimer is called in hidpsessionthread(). After hidpsessionput, then 'session' will be freed, causing kernel panic when hidpidletimeout is running.
The solution is to use deltimersync instead of del_timer.
Here is the call trace:
? hidpsessionprobe+0x780/0x780 calltimerfn+0x2d/0x1e0 __runtimers.part.0+0x569/0x940 hidpsessionprobe+0x780/0x780 calltimerfn+0x1e0/0x1e0 ktimeget+0x5c/0xf0 lapicnextdeadline+0x2c/0x40 clockeventsprogramevent+0x205/0x320 runtimersoftirq+0xa9/0x1b0 __do_softirq+0x1b9/0x641 _irqexitrcu+0xdc/0x190 irqexitrcu+0xe/0x20 sysvecapictimerinterrupt+0xa1/0xc0
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54120.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/0efb276d5848a3accc37c6f41b85e442c4768169
- https://git.kernel.org/stable/c/152f47bd6b995e0e98c85672f6d19894bc287ef2
- https://git.kernel.org/stable/c/248af9feca062a4ca9c3f2ccf67056c8a5eb817f
- https://git.kernel.org/stable/c/5f3d214d19899183d4e0cce7552998262112e4ab
- https://git.kernel.org/stable/c/8a99e6200c38b78a45dcd12a6bdc43fdf4dc36be
- https://git.kernel.org/stable/c/c95930abd687fcd1aa040dc4fe90dff947916460
- https://git.kernel.org/stable/c/f6719fd8f409fa1da8dc956e93822d25e1e8b360
- https://git.kernel.org/stable/c/f7ec5ca433ceead8d9d78fd2febff094f289441d
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54120.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-54120
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1da177e4c3f41524e886b7f1b8a0c1fc7321cac2Fixed152f47bd6b995e0e98c85672f6d19894bc287ef2Fixed5f3d214d19899183d4e0cce7552998262112e4abFixed8a99e6200c38b78a45dcd12a6bdc43fdf4dc36beFixedf7ec5ca433ceead8d9d78fd2febff094f289441dFixed0efb276d5848a3accc37c6f41b85e442c4768169Fixedf6719fd8f409fa1da8dc956e93822d25e1e8b360Fixed248af9feca062a4ca9c3f2ccf67056c8a5eb817fFixedc95930abd687fcd1aa040dc4fe90dff947916460
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.12Fixed4.14.313
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.281
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.241
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.178
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.108
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.25
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.2.12