CVE-2022-48844

MEDIUM

Linux Kernel < 5.15.30, 5.15.0-5.15.30, 5.16.0-5.16.16 - Use-After-Free in Bluetooth HCI Core sent_cmd skb

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix leaking sent_cmd skb sent_cmd memory is not freed before freeing hci_dev causing it to leak it contents.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/3679ccc09d8806686d579095ed504e045af7f7d6

Patch

https://git.kernel.org/stable/c/9473d06bd1c8da49eafb685aa95a290290c672dd

Patch

https://git.kernel.org/stable/c/dd3b1dc3dd050f1f47cd13e300732852414270f8

Scores

CVSS v3 5.5

EPSS 0.0022

EPSS Percentile 12.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-416

Status published

Products (11)

linux/Kernel 5.15.0 - 5.15.30linux

linux/Kernel 5.16.0 - 5.16.16linux

Linux/Linux < 5.15

Linux/Linux 5.15

Linux/Linux 5.15.30 - 5.15.*

Linux/Linux 5.16.16 - 5.16.*

Linux/Linux 5.17

Linux/Linux 58ce6d5b271ab25fb2056f84a8e5546945eb5fc9 - 3679ccc09d8806686d579095ed504e045af7f7d6

Linux/Linux 58ce6d5b271ab25fb2056f84a8e5546945eb5fc9 - 9473d06bd1c8da49eafb685aa95a290290c672dd

Linux/Linux 58ce6d5b271ab25fb2056f84a8e5546945eb5fc9 - dd3b1dc3dd050f1f47cd13e300732852414270f8

... and 1 more

Published Jul 16, 2024

Tracked Since Feb 18, 2026