CVE-2023-28464 affecting package kernel for versions less than 5.15.122.1-2
Details
hciconncleanup in net/bluetooth/hciconn.c in the Linux kernel through 6.2.9 has a use-after-free (observed in hciconnhashflush) because of calls to hcidevput and hciconnput. There is a double free that may lead to privilege escalation.