CVE-2023-40283

HIGH

Linux Kernel 3.5-4.14.321 - Use-After-Free in L2CAP Socket Release

Title source: llm

Description

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

References (10)

Core 10

Core References

Third Party Advisory, VDB Entry

http://packetstormsecurity.com/files/175072/Kernel-Live-Patch-Security-Notice-LSN-0098-1.html

Third Party Advisory, VDB Entry

http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html

Release Notes

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.4.10

Patch

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1728137b33c00d5a2b5110ed7aafb42e7c32e4a1

Patch

https://github.com/torvalds/linux/commit/1728137b33c00d5a2b5110ed7aafb42e7c32e4a1

View Patch ZIP pw:eip

Third Party Advisory

https://security.netapp.com/advisory/ntap-20231020-0007/

Third Party Advisory vendor-advisory

https://www.debian.org/security/2023/dsa-5480

Third Party Advisory vendor-advisory

https://www.debian.org/security/2023/dsa-5492

Mailing List, Third Party Advisory mailing-list

https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html

Issue Tracking, Third Party Advisory mailing-list

https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html

Scores

CVSS v3 7.8

EPSS 0.0001

EPSS Percentile 1.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (9)

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 18.04

canonical/ubuntu_linux 20.04

canonical/ubuntu_linux 22.04

debian/debian_linux 10.0

debian/debian_linux 11.0

debian/debian_linux 12.0

linux/linux_kernel 3.5 - 4.14.322

Published Aug 14, 2023

Tracked Since Feb 18, 2026