Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user

Description

A vulnerability classified as critical was found in Linux Kernel up to 6.6.129/6.12.77/6.18.19/6.19.9/7.0-rc4. This vulnerability affects the function l2cap_conn_del of the component Bluetooth. Executing a manipulation can lead to use after free. This vulnerability appears as CVE-2026-23461. The attacker needs to be present on the local network. There is no available exploit. Upgrading the affected component is advised.

Affected Products

Vendor	Product	Versions
linux	linux kernel	efc30877bd4bc85fefe98d80af60fafc86e5775e, f87271d21dd4ee83857ca11b94e7b4952749bbae, ab4eedb790cae44313759b50fe47da285e2519d5, ab4eedb790cae44313759b50fe47da285e2519d5, ab4eedb790cae44313759b50fe47da285e2519d5, 18ab6b6078fa8191ca30a3065d57bf35d5635761, 6.14, 6.6.129, 6.12.77, 6.18.19, 6.19.9, 7.0-rc4

References

Related News (2 articles)

Tier C

VulDB3h ago

CVE-2026-23461 | Linux Kernel up to 6.6.129/6.12.77/6.18.19/6.19.9/7.0-rc4 Bluetooth l2cap_conn_del use after free

→ No new info (linked only)

Tier C

Linux Kernel CVEs3h ago

CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

11a87dd5df428a4b79a84d2790cac7f3c73f1f0dc22a5e659959eb77c2fbb58a5adfaf3c3dab7abfda3000cbe4851458a22be38bb18c0689c39fdd5f71030f3b3015a412133a805ff47970cdcf30c2b8752a6c9596dd25efd6978a73ff21f3b592668f4a06.6.1306.12.786.18.206.19.107.0-rc5

PublishedApr 3, 2026

Last enriched2h agov2

Trending Score61

Source articles2

Independent2

Info Completeness7/14

Missing: cvss, epss, cwe, kev, exploit, iocs, mitre_attack