[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-53673":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":108,"related":109,"reserved_at":9,"published_at":140,"modified_at":141,"state":142,"summary":143,"references_raw":152,"kevs":171,"epss":172,"epss_history":175,"metrics":442,"affected":448},"CVE-2023-53673","In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: call disconnect callback before deleting conn\n\nIn hci_cs_disconnect, we do hci_conn_del even if disconnection failed.\n\nISO, L2CAP and SCO connections refer to the hci_conn without\nhci_conn_get, so disconn_cfm must be called so they can clean up their\nconn, otherwise use-after-free occurs.\n\nISO:\n==========================================================\niso_sock_connect:880: sk 00000000eabd6557\niso_connect_cis:356: 70:1a:b8:98:ff:a2 -> 28:3d:c2:4a:7e:da\n...\niso_conn_add:140: hcon 000000001696f1fd conn 00000000b6251073\nhci_dev_put:1487: hci0 orig refcnt 17\n__iso_chan_add:214: conn 00000000b6251073\niso_sock_clear_timer:117: sock 00000000eabd6557 state 3\n...\nhci_rx_work:4085: hci0 Event packet\nhci_event_packet:7601: hci0: event 0x0f\nhci_cmd_status_evt:4346: hci0: opcode 0x0406\nhci_cs_disconnect:2760: hci0: status 0x0c\nhci_sent_cmd_data:3107: hci0 opcode 0x0406\nhci_conn_del:1151: hci0 hcon 000000001696f1fd handle 2560\nhci_conn_unlink:1102: hci0: hcon 000000001696f1fd\nhci_conn_drop:1451: hcon 00000000d8521aaf orig refcnt 2\nhci_chan_list_flush:2780: hcon 000000001696f1fd\nhci_dev_put:1487: hci0 orig refcnt 21\nhci_dev_put:1487: hci0 orig refcnt 20\nhci_req_cmd_complete:3978: opcode 0x0406 status 0x0c\n... \u003Cno iso_* activity on sk/conn> ...\niso_sock_sendmsg:1098: sock 00000000dea5e2e0, sk 00000000eabd6557\nBUG: kernel NULL pointer dereference, address: 0000000000000668\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nRIP: 0010:iso_sock_sendmsg (net/bluetooth/iso.c:1112) bluetooth\n==========================================================\n\nL2CAP:\n==================================================================\nhci_cmd_status_evt:4359: hci0: opcode 0x0406\nhci_cs_disconnect:2760: hci0: status 0x0c\nhci_sent_cmd_data:3085: hci0 opcode 0x0406\nhci_conn_del:1151: hci0 hcon ffff88800c999000 handle 3585\nhci_conn_unlink:1102: hci0: hcon ffff88800c999000\nhci_chan_list_flush:2780: hcon ffff88800c999000\nhci_chan_del:2761: hci0 hcon ffff88800c999000 chan ffff888018ddd280\n...\nBUG: KASAN: slab-use-after-free in hci_send_acl+0x2d/0x540 [bluetooth]\nRead of size 8 at addr ffff888018ddd298 by task bluetoothd/1175\n\nCPU: 0 PID: 1175 Comm: bluetoothd Tainted: G            E      6.4.0-rc4+ #2\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nCall Trace:\n \u003CTASK>\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0xf8/0x180\n ? hci_send_acl+0x2d/0x540 [bluetooth]\n kasan_report+0xa8/0xe0\n ? hci_send_acl+0x2d/0x540 [bluetooth]\n hci_send_acl+0x2d/0x540 [bluetooth]\n ? __pfx___lock_acquire+0x10/0x10\n l2cap_chan_send+0x1fd/0x1300 [bluetooth]\n ? l2cap_sock_sendmsg+0xf2/0x170 [bluetooth]\n ? __pfx_l2cap_chan_send+0x10/0x10 [bluetooth]\n ? lock_release+0x1d5/0x3c0\n ? mark_held_locks+0x1a/0x90\n l2cap_sock_sendmsg+0x100/0x170 [bluetooth]\n sock_write_iter+0x275/0x280\n ? __pfx_sock_write_iter+0x10/0x10\n ? __pfx___lock_acquire+0x10/0x10\n do_iter_readv_writev+0x176/0x220\n ? __pfx_do_iter_readv_writev+0x10/0x10\n ? find_held_lock+0x83/0xa0\n ? selinux_file_permission+0x13e/0x210\n do_iter_write+0xda/0x340\n vfs_writev+0x1b4/0x400\n ? __pfx_vfs_writev+0x10/0x10\n ? __seccomp_filter+0x112/0x750\n ? populate_seccomp_data+0x182/0x220\n ? __fget_light+0xdf/0x100\n ? do_writev+0x19d/0x210\n do_writev+0x19d/0x210\n ? __pfx_do_writev+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0x60/0x90\n ? lockdep_hardirqs_on_prepare+0x149/0x210\n ? do_syscall_64+0x6c/0x90\n ? lockdep_hardirqs_on_prepare+0x149/0x210\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7ff45cb23e64\nCode: 15 d1 1f 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 80 3d 9d a7 0d 00 00 74 13 b8 14 00 00 00 0f 05 \u003C48> 3d 00 f0 ff ff 77 54 c3 0f 1f 00 48 83 ec 28 89 54 24 1c 48 89\nRSP: 002b:00007fff21ae09b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: \n---truncated---",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106],{"_key":25},"SUSE-SU-2025:4057-1",{"_key":27},"SUSE-SU-2025:4132-1",{"_key":29},"SUSE-SU-2025:4135-1",{"_key":31},"SUSE-SU-2025:4172-1",{"_key":33},"SUSE-SU-2025:4203-1",{"_key":35},"SUSE-SU-2025:4213-1",{"_key":37},"SUSE-SU-2025:4215-1",{"_key":39},"SUSE-SU-2025:4237-1",{"_key":41},"SUSE-SU-2025:4239-1",{"_key":43},"SUSE-SU-2025:4242-1",{"_key":45},"SUSE-SU-2025:4285-1",{"_key":47},"SUSE-SU-2025:4320-1",{"_key":49},"SUSE-SU-2025:4128-1",{"_key":51},"SUSE-SU-2025:4301-1",{"_key":53},"RHSA-2026:1142",{"_key":55},"RHSA-2026:1148",{"_key":57},"RHSA-2026:2573",{"_key":59},"RHSA-2026:2577",{"_key":61},"SUSE-SU-2025:21040-1",{"_key":63},"SUSE-SU-2025:21052-1",{"_key":65},"SUSE-SU-2025:21056-1",{"_key":67},"SUSE-SU-2025:21064-1",{"_key":69},"SUSE-SU-2025:4111-1",{"_key":71},"SUSE-SU-2025:4139-1",{"_key":73},"SUSE-SU-2025:4141-1",{"_key":75},"SUSE-SU-2025:4149-1",{"_key":77},"SUSE-SU-2025:4171-1",{"_key":79},"SUSE-SU-2025:4188-1",{"_key":81},"SUSE-SU-2025:4199-1",{"_key":83},"SUSE-SU-2025:4227-1",{"_key":85},"SUSE-SU-2025:4230-1",{"_key":87},"SUSE-SU-2025:4233-1",{"_key":89},"SUSE-SU-2025:4281-1",{"_key":91},"SUSE-SU-2025:4140-1",{"_key":93},"RHSA-2026:2490",{"_key":95},"RHSA-2026:2560",{"_key":97},"RHSA-2026:2583",{"_key":99},"RHSA-2026:3360",{"_key":101},"DEBIAN-CVE-2023-53673",{"_key":103},"RHSA-2026:2535",{"_key":105},"UBUNTU-CVE-2023-53673",{"_key":107},"RHSA-2024:2394",[],[110,111,112,113,114,115,116,117,118,119,120,121,122,123,124,125,126,127,128,129,130,131,132,133,134,135,136,137,138,139],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},"2025-10-07T15:21:29.632Z","2026-05-11T19:49:42.170Z","Analyzed",{"cisa_kev":144,"cisa_ransomware":144,"cisa_vendor":9,"epss_severity":145,"epss_score":146,"severity":147,"severity_score":148,"severity_version":149,"severity_source":150,"severity_vector":151,"severity_status":142},false,"low",0.00008,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[153,159,163,167],{"url":154,"sources":155,"tags":157},"https://git.kernel.org/stable/c/59bd1e476bbc7bc6dff3c61bba787095a4839796",[156,150],"cve.org",[158],"Patch",{"url":160,"sources":161,"tags":162},"https://git.kernel.org/stable/c/093a07052406b363b1b2ab489e17dbadaf3e509b",[156,150],[158],{"url":164,"sources":165,"tags":166},"https://git.kernel.org/stable/c/7f7cfcb6f0825652973b780f248603e23f16ee90",[156,150],[158],{"url":168,"sources":169,"tags":170},"https://git.kernel.org/stable/c/1ecf6dc2676ead4b927c50b1be0851fa4d756574",[156,150],[158],[],{"date":173,"score":146,"percentile":174},"2026-06-03",0.00754,[176,180,183,186,189,193,196,199,202,205,208,211,214,217,220,223,226,229,232,235,238,240,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,294,297,301,304,307,310,313,316,319,322,325,328,331,334,337,340,343,346,349,352,355,358,361,363,365,368,371,374,377,380,383,385,388,391,394,397,400,403,406,408,411,414,416,419,422,425,428,430,433,436,439],{"date":177,"score":178,"percentile":179},"2025-11-04",0.00022,0.04438,{"date":181,"score":178,"percentile":182},"2025-11-05",0.04443,{"date":184,"score":178,"percentile":185},"2025-11-06",0.04557,{"date":187,"score":178,"percentile":188},"2025-11-07",0.04567,{"date":190,"score":191,"percentile":192},"2025-11-08",0.00024,0.05217,{"date":194,"score":191,"percentile":195},"2025-11-09",0.05221,{"date":197,"score":191,"percentile":198},"2025-11-10",0.05198,{"date":200,"score":191,"percentile":201},"2025-11-11",0.05228,{"date":203,"score":191,"percentile":204},"2025-11-12",0.05227,{"date":206,"score":191,"percentile":207},"2025-11-13",0.05244,{"date":209,"score":191,"percentile":210},"2025-11-14",0.0528,{"date":212,"score":191,"percentile":213},"2025-11-15",0.05306,{"date":215,"score":191,"percentile":216},"2025-11-16",0.05317,{"date":218,"score":191,"percentile":219},"2025-11-17",0.05312,{"date":221,"score":191,"percentile":222},"2025-11-18",0.03168,{"date":224,"score":191,"percentile":225},"2025-11-19",0.03218,{"date":227,"score":191,"percentile":228},"2025-11-20",0.03283,{"date":230,"score":191,"percentile":231},"2025-11-21",0.05362,{"date":233,"score":191,"percentile":234},"2025-11-22",0.05344,{"date":236,"score":191,"percentile":237},"2025-11-23",0.05327,{"date":239,"score":191,"percentile":213},"2025-11-24",{"date":241,"score":191,"percentile":242},"2025-11-25",0.05309,{"date":244,"score":191,"percentile":245},"2025-11-26",0.05339,{"date":247,"score":191,"percentile":248},"2025-11-27",0.05356,{"date":250,"score":191,"percentile":251},"2025-11-28",0.05336,{"date":253,"score":191,"percentile":254},"2025-11-29",0.05382,{"date":256,"score":191,"percentile":257},"2025-11-30",0.05377,{"date":259,"score":191,"percentile":260},"2025-12-01",0.05465,{"date":262,"score":191,"percentile":263},"2025-12-02",0.05481,{"date":265,"score":191,"percentile":266},"2025-12-03",0.05504,{"date":268,"score":191,"percentile":269},"2025-12-04",0.05457,{"date":271,"score":191,"percentile":272},"2025-12-05",0.05521,{"date":274,"score":191,"percentile":275},"2025-12-06",0.05533,{"date":277,"score":191,"percentile":278},"2025-12-07",0.05531,{"date":280,"score":191,"percentile":281},"2025-12-08",0.05528,{"date":283,"score":191,"percentile":284},"2025-12-09",0.05572,{"date":286,"score":191,"percentile":287},"2025-12-10",0.05638,{"date":289,"score":191,"percentile":290},"2025-12-11",0.05636,{"date":292,"score":191,"percentile":293},"2025-12-12",0.05666,{"date":295,"score":191,"percentile":296},"2025-12-13",0.05703,{"date":298,"score":299,"percentile":300},"2025-12-14",0.00025,0.0604,{"date":302,"score":299,"percentile":303},"2025-12-15",0.06025,{"date":305,"score":299,"percentile":306},"2025-12-16",0.06053,{"date":308,"score":299,"percentile":309},"2025-12-17",0.06131,{"date":311,"score":299,"percentile":312},"2025-12-18",0.06175,{"date":314,"score":299,"percentile":315},"2025-12-19",0.06162,{"date":317,"score":299,"percentile":318},"2025-12-20",0.06154,{"date":320,"score":299,"percentile":321},"2025-12-21",0.0614,{"date":323,"score":299,"percentile":324},"2025-12-22",0.06104,{"date":326,"score":299,"percentile":327},"2025-12-23",0.06116,{"date":329,"score":299,"percentile":330},"2025-12-24",0.06148,{"date":332,"score":299,"percentile":333},"2025-12-25",0.06198,{"date":335,"score":299,"percentile":336},"2025-12-26",0.06187,{"date":338,"score":299,"percentile":339},"2025-12-27",0.06186,{"date":341,"score":299,"percentile":342},"2025-12-28",0.06181,{"date":344,"score":299,"percentile":345},"2025-12-29",0.06167,{"date":347,"score":299,"percentile":348},"2025-12-30",0.06149,{"date":350,"score":299,"percentile":351},"2025-12-31",0.06209,{"date":353,"score":299,"percentile":354},"2026-01-01",0.06275,{"date":356,"score":299,"percentile":357},"2026-01-02",0.06269,{"date":359,"score":299,"percentile":360},"2026-01-03",0.0625,{"date":362,"score":299,"percentile":345},"2026-01-04",{"date":364,"score":299,"percentile":327},"2026-01-05",{"date":366,"score":299,"percentile":367},"2026-01-06",0.06123,{"date":369,"score":299,"percentile":370},"2026-01-07",0.06144,{"date":372,"score":299,"percentile":373},"2026-01-08",0.06202,{"date":375,"score":299,"percentile":376},"2026-01-09",0.06199,{"date":378,"score":299,"percentile":379},"2026-01-10",0.062,{"date":381,"score":299,"percentile":382},"2026-01-11",0.06207,{"date":384,"score":299,"percentile":339},"2026-01-12",{"date":386,"score":299,"percentile":387},"2026-01-13",0.06173,{"date":389,"score":299,"percentile":390},"2026-01-14",0.06224,{"date":392,"score":299,"percentile":393},"2026-01-15",0.06231,{"date":395,"score":299,"percentile":396},"2026-01-16",0.06242,{"date":398,"score":299,"percentile":399},"2026-01-17",0.06249,{"date":401,"score":299,"percentile":402},"2026-01-18",0.06247,{"date":404,"score":299,"percentile":405},"2026-01-19",0.06228,{"date":407,"score":299,"percentile":339},"2026-01-20",{"date":409,"score":299,"percentile":410},"2026-01-21",0.06179,{"date":412,"score":299,"percentile":413},"2026-01-22",0.06147,{"date":415,"score":299,"percentile":382},"2026-01-23",{"date":417,"score":299,"percentile":418},"2026-01-24",0.06244,{"date":420,"score":299,"percentile":421},"2026-01-25",0.06192,{"date":423,"score":299,"percentile":424},"2026-01-26",0.06177,{"date":426,"score":299,"percentile":427},"2026-01-27",0.06155,{"date":429,"score":299,"percentile":309},"2026-01-28",{"date":431,"score":299,"percentile":432},"2026-01-29",0.06137,{"date":434,"score":299,"percentile":435},"2026-01-30",0.06139,{"date":437,"score":299,"percentile":438},"2026-01-31",0.06125,{"date":440,"score":299,"percentile":441},"2026-02-01",0.06166,[443],{"source":150,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":444,"cvss_v4_0":9},{"baseScore":148,"baseSeverity":445,"vectorString":151,"impactScore":446,"exploitabilityScore":447},"HIGH",9.8,4.6,[449,472],{"ecosystem":9,"name":450,"vendor":451,"product":451,"cpe_part":452,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":453},"Linux","linux","a",[454,461,464,467,470],{"version":455,"is_range":456,"range_type":156,"version_start":457,"version_start_type":458,"version_end":459,"version_end_type":460,"fixed_in":9},">= b8d290525e3972b5e876b2649a42bf4081d753fe, \u003C 1ecf6dc2676ead4b927c50b1be0851fa4d756574",true,"b8d290525e3972b5e876b2649a42bf4081d753fe","including","1ecf6dc2676ead4b927c50b1be0851fa4d756574","excluding",{"version":462,"is_range":456,"range_type":156,"version_start":457,"version_start_type":458,"version_end":463,"version_end_type":460,"fixed_in":9},">= b8d290525e3972b5e876b2649a42bf4081d753fe, \u003C 59bd1e476bbc7bc6dff3c61bba787095a4839796","59bd1e476bbc7bc6dff3c61bba787095a4839796",{"version":465,"is_range":456,"range_type":156,"version_start":457,"version_start_type":458,"version_end":466,"version_end_type":460,"fixed_in":9},">= b8d290525e3972b5e876b2649a42bf4081d753fe, \u003C 093a07052406b363b1b2ab489e17dbadaf3e509b","093a07052406b363b1b2ab489e17dbadaf3e509b",{"version":468,"is_range":456,"range_type":156,"version_start":457,"version_start_type":458,"version_end":469,"version_end_type":460,"fixed_in":9},">= b8d290525e3972b5e876b2649a42bf4081d753fe, \u003C 7f7cfcb6f0825652973b780f248603e23f16ee90","7f7cfcb6f0825652973b780f248603e23f16ee90",{"version":471,"is_range":144,"range_type":156,"version_start":471,"version_start_type":458,"version_end":471,"version_end_type":458,"fixed_in":9},"5.7",{"ecosystem":9,"name":473,"vendor":451,"product":474,"cpe_part":475,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":476},"linux kernel","linux_kernel","o",[477,481,484,487,491,493],{"version":478,"is_range":456,"range_type":479,"version_start":471,"version_start_type":458,"version_end":480,"version_end_type":460,"fixed_in":9},"gte5.7_lt6.1.42","cpe","6.1.42",{"version":482,"is_range":456,"range_type":479,"version_start":471,"version_start_type":458,"version_end":483,"version_end_type":460,"fixed_in":9},"gte5.7_lt5.15.200","5.15.200",{"version":485,"is_range":456,"range_type":479,"version_start":486,"version_start_type":458,"version_end":480,"version_end_type":460,"fixed_in":9},"gte5.16_lt6.1.42","5.16",{"version":488,"is_range":456,"range_type":479,"version_start":489,"version_start_type":458,"version_end":490,"version_end_type":460,"fixed_in":9},"gte6.2_lt6.4.7","6.2","6.4.7",{"version":492,"is_range":144,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.5:rc1",{"version":494,"is_range":144,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.5:rc2"]