[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-53762":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":14,"duplicates":45,"related":46,"reserved_at":9,"published_at":55,"modified_at":56,"state":57,"summary":58,"references_raw":62,"kevs":77,"epss":78,"epss_history":81,"metrics":351,"affected":352},"CVE-2023-53762","In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync\n\nUse-after-free can occur in hci_disconnect_all_sync if a connection is\ndeleted by concurrent processing of a controller event.\n\nTo prevent this the code now tries to iterate over the list backwards\nto ensure the links are cleanup before its parents, also it no longer\nrelies on a cursor, instead it always uses the last element since\nhci_abort_conn_sync is guaranteed to call hci_conn_del.\n\nUAF crash log:\n==================================================================\nBUG: KASAN: slab-use-after-free in hci_set_powered_sync\n(net/bluetooth/hci_sync.c:5424) [bluetooth]\nRead of size 8 at addr ffff888009d9c000 by task kworker/u9:0/124\n\nCPU: 0 PID: 124 Comm: kworker/u9:0 Tainted: G        W\n6.5.0-rc1+ #10\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n1.16.2-1.fc38 04/01/2014\nWorkqueue: hci0 hci_cmd_sync_work [bluetooth]\nCall Trace:\n \u003CTASK>\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0xdd/0x160\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n kasan_report+0xa6/0xe0\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_hci_set_powered_sync+0x10/0x10 [bluetooth]\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_cmd_sync_work+0x137/0x220 [bluetooth]\n process_one_work+0x526/0x9d0\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n worker_thread+0x92/0x630\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x196/0x1e0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n \u003C/TASK>\n\nAllocated by task 1782:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n __kasan_kmalloc+0x8f/0xa0\n hci_conn_add+0xa5/0xa80 [bluetooth]\n hci_bind_cis+0x881/0x9b0 [bluetooth]\n iso_connect_cis+0x121/0x520 [bluetooth]\n iso_sock_connect+0x3f6/0x790 [bluetooth]\n __sys_connect+0x109/0x130\n __x64_sys_connect+0x40/0x50\n do_syscall_64+0x60/0x90\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFreed by task 695:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n kasan_save_free_info+0x2b/0x50\n __kasan_slab_free+0x10a/0x180\n __kmem_cache_free+0x14d/0x2e0\n device_release+0x5d/0xf0\n kobject_put+0xdf/0x270\n hci_disconn_complete_evt+0x274/0x3a0 [bluetooth]\n hci_event_packet+0x579/0x7e0 [bluetooth]\n hci_rx_work+0x287/0xaa0 [bluetooth]\n process_one_work+0x526/0x9d0\n worker_thread+0x92/0x630\n kthread+0x196/0x1e0\n ret_from_fork+0x2c/0x50\n==================================================================",null,[],[],[],[],[15,17,19,21,23,25,27,29,31,33,35,37,39,41,43],{"_key":16},"UBUNTU-CVE-2023-53762",{"_key":18},"SUSE-SU-2026:0278-1",{"_key":20},"SUSE-SU-2026:0281-1",{"_key":22},"SUSE-SU-2026:0315-1",{"_key":24},"SUSE-SU-2026:20477-1",{"_key":26},"SUSE-SU-2026:20498-1",{"_key":28},"SUSE-SU-2026:0293-1",{"_key":30},"SUSE-SU-2026:20845-1",{"_key":32},"SUSE-SU-2026:20876-1",{"_key":34},"RHSA-2026:2720",{"_key":36},"RHSA-2026:2821",{"_key":38},"DEBIAN-CVE-2023-53762",{"_key":40},"RHSA-2026:3267",{"_key":42},"RHSA-2026:3358",{"_key":44},"RHSA-2024:2394",[],[47,48,49,50,51,52,53,54],{"_key":18},{"_key":20},{"_key":22},{"_key":24},{"_key":26},{"_key":28},{"_key":30},{"_key":32},"2025-12-08T01:19:23.927Z","2026-05-11T19:51:11.478Z","Deferred",{"cisa_kev":59,"cisa_ransomware":59,"cisa_vendor":9,"epss_severity":60,"epss_score":61,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":57},false,"low",0.00022,[63,69,73],{"url":64,"sources":65,"tags":68},"https://git.kernel.org/stable/c/a30c074f0b5b7f909a15c978fbc96a29e2f94e42",[66,67],"cve.org","nvd",[],{"url":70,"sources":71,"tags":72},"https://git.kernel.org/stable/c/ba3ba53ce1f76fc372b8f918fece4f9b1e41acd4",[66,67],[],{"url":74,"sources":75,"tags":76},"https://git.kernel.org/stable/c/94d9ba9f9888b748d4abd2aa1547af56ae85f772",[66,67],[],[],{"date":79,"score":61,"percentile":80},"2026-06-03",0.06262,[82,86,89,92,95,98,101,104,107,110,113,116,119,122,125,128,131,134,137,140,143,145,148,150,153,156,159,162,165,168,171,174,177,181,184,187,190,193,196,199,202,205,207,210,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,289,292,295,298,301,304,307,310,312,315,318,321,324,327,330,333,336,339,342,345,348],{"date":83,"score":84,"percentile":85},"2025-12-08",0.00017,0.03072,{"date":87,"score":84,"percentile":88},"2025-12-09",0.031,{"date":90,"score":84,"percentile":91},"2025-12-10",0.03138,{"date":93,"score":84,"percentile":94},"2025-12-11",0.03139,{"date":96,"score":84,"percentile":97},"2025-12-12",0.03148,{"date":99,"score":84,"percentile":100},"2025-12-13",0.0312,{"date":102,"score":61,"percentile":103},"2025-12-14",0.05142,{"date":105,"score":61,"percentile":106},"2025-12-15",0.0511,{"date":108,"score":61,"percentile":109},"2025-12-16",0.05108,{"date":111,"score":61,"percentile":112},"2025-12-17",0.05169,{"date":114,"score":61,"percentile":115},"2025-12-18",0.05208,{"date":117,"score":61,"percentile":118},"2025-12-19",0.05186,{"date":120,"score":61,"percentile":121},"2025-12-20",0.05185,{"date":123,"score":61,"percentile":124},"2025-12-21",0.05193,{"date":126,"score":61,"percentile":127},"2025-12-22",0.05135,{"date":129,"score":61,"percentile":130},"2025-12-23",0.05141,{"date":132,"score":61,"percentile":133},"2025-12-24",0.0516,{"date":135,"score":61,"percentile":136},"2025-12-25",0.05194,{"date":138,"score":61,"percentile":139},"2025-12-26",0.05196,{"date":141,"score":61,"percentile":142},"2025-12-27",0.05202,{"date":144,"score":61,"percentile":118},"2025-12-28",{"date":146,"score":61,"percentile":147},"2025-12-29",0.05181,{"date":149,"score":61,"percentile":130},"2025-12-30",{"date":151,"score":61,"percentile":152},"2025-12-31",0.05172,{"date":154,"score":61,"percentile":155},"2026-01-01",0.05246,{"date":157,"score":61,"percentile":158},"2026-01-02",0.0524,{"date":160,"score":61,"percentile":161},"2026-01-03",0.05222,{"date":163,"score":61,"percentile":164},"2026-01-04",0.05124,{"date":166,"score":61,"percentile":167},"2026-01-05",0.05069,{"date":169,"score":61,"percentile":170},"2026-01-06",0.05065,{"date":172,"score":61,"percentile":173},"2026-01-07",0.05085,{"date":175,"score":61,"percentile":176},"2026-01-08",0.0513,{"date":178,"score":179,"percentile":180},"2026-01-09",0.00024,0.05788,{"date":182,"score":179,"percentile":183},"2026-01-10",0.05796,{"date":185,"score":179,"percentile":186},"2026-01-11",0.05778,{"date":188,"score":179,"percentile":189},"2026-01-12",0.05762,{"date":191,"score":179,"percentile":192},"2026-01-13",0.0575,{"date":194,"score":179,"percentile":195},"2026-01-14",0.05793,{"date":197,"score":179,"percentile":198},"2026-01-15",0.05786,{"date":200,"score":179,"percentile":201},"2026-01-16",0.0579,{"date":203,"score":179,"percentile":204},"2026-01-17",0.05802,{"date":206,"score":179,"percentile":195},"2026-01-18",{"date":208,"score":179,"percentile":209},"2026-01-19",0.05767,{"date":211,"score":179,"percentile":212},"2026-01-20",0.05723,{"date":214,"score":179,"percentile":215},"2026-01-21",0.05725,{"date":217,"score":179,"percentile":218},"2026-01-22",0.05709,{"date":220,"score":179,"percentile":221},"2026-01-23",0.05768,{"date":223,"score":179,"percentile":224},"2026-01-24",0.05815,{"date":226,"score":179,"percentile":227},"2026-01-25",0.05763,{"date":229,"score":179,"percentile":230},"2026-01-26",0.05745,{"date":232,"score":179,"percentile":233},"2026-01-27",0.05724,{"date":235,"score":179,"percentile":236},"2026-01-28",0.05707,{"date":238,"score":179,"percentile":239},"2026-01-29",0.0572,{"date":241,"score":179,"percentile":242},"2026-01-30",0.05719,{"date":244,"score":179,"percentile":245},"2026-01-31",0.05697,{"date":247,"score":179,"percentile":248},"2026-02-01",0.05764,{"date":250,"score":179,"percentile":251},"2026-02-02",0.05748,{"date":253,"score":179,"percentile":254},"2026-02-03",0.05758,{"date":256,"score":179,"percentile":257},"2026-02-04",0.05771,{"date":259,"score":179,"percentile":260},"2026-02-05",0.05828,{"date":262,"score":179,"percentile":263},"2026-02-06",0.05852,{"date":265,"score":179,"percentile":266},"2026-02-07",0.05861,{"date":268,"score":179,"percentile":269},"2026-02-08",0.05855,{"date":271,"score":179,"percentile":272},"2026-02-09",0.05826,{"date":274,"score":179,"percentile":275},"2026-02-10",0.05818,{"date":277,"score":179,"percentile":278},"2026-02-11",0.0587,{"date":280,"score":179,"percentile":281},"2026-02-12",0.05903,{"date":283,"score":179,"percentile":284},"2026-02-13",0.05911,{"date":286,"score":287,"percentile":288},"2026-02-14",0.00025,0.06289,{"date":290,"score":287,"percentile":291},"2026-02-15",0.0631,{"date":293,"score":287,"percentile":294},"2026-02-16",0.06297,{"date":296,"score":287,"percentile":297},"2026-02-17",0.06271,{"date":299,"score":287,"percentile":300},"2026-02-18",0.066,{"date":302,"score":287,"percentile":303},"2026-02-19",0.0669,{"date":305,"score":287,"percentile":306},"2026-02-20",0.06678,{"date":308,"score":287,"percentile":309},"2026-02-21",0.06691,{"date":311,"score":287,"percentile":303},"2026-02-22",{"date":313,"score":287,"percentile":314},"2026-02-23",0.06701,{"date":316,"score":287,"percentile":317},"2026-02-24",0.06685,{"date":319,"score":287,"percentile":320},"2026-02-25",0.06622,{"date":322,"score":287,"percentile":323},"2026-02-26",0.06563,{"date":325,"score":287,"percentile":326},"2026-02-27",0.06583,{"date":328,"score":287,"percentile":329},"2026-02-28",0.06587,{"date":331,"score":287,"percentile":332},"2026-03-01",0.0664,{"date":334,"score":287,"percentile":335},"2026-03-02",0.06574,{"date":337,"score":287,"percentile":338},"2026-03-03",0.06582,{"date":340,"score":287,"percentile":341},"2026-03-04",0.06508,{"date":343,"score":287,"percentile":344},"2026-03-05",0.06534,{"date":346,"score":287,"percentile":347},"2026-03-06",0.06514,{"date":349,"score":287,"percentile":350},"2026-03-07",0.06522,[],[353],{"ecosystem":9,"name":354,"vendor":355,"product":355,"cpe_part":356,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":357},"Linux","linux","a",[358,365,368,371],{"version":359,"is_range":360,"range_type":66,"version_start":361,"version_start_type":362,"version_end":363,"version_end_type":364,"fixed_in":9},">= 182ee45da083db4e3e621541ccf255bfa9652214, \u003C a30c074f0b5b7f909a15c978fbc96a29e2f94e42",true,"182ee45da083db4e3e621541ccf255bfa9652214","including","a30c074f0b5b7f909a15c978fbc96a29e2f94e42","excluding",{"version":366,"is_range":360,"range_type":66,"version_start":361,"version_start_type":362,"version_end":367,"version_end_type":364,"fixed_in":9},">= 182ee45da083db4e3e621541ccf255bfa9652214, \u003C ba3ba53ce1f76fc372b8f918fece4f9b1e41acd4","ba3ba53ce1f76fc372b8f918fece4f9b1e41acd4",{"version":369,"is_range":360,"range_type":66,"version_start":361,"version_start_type":362,"version_end":370,"version_end_type":364,"fixed_in":9},">= 182ee45da083db4e3e621541ccf255bfa9652214, \u003C 94d9ba9f9888b748d4abd2aa1547af56ae85f772","94d9ba9f9888b748d4abd2aa1547af56ae85f772",{"version":372,"is_range":59,"range_type":66,"version_start":372,"version_start_type":362,"version_end":372,"version_end_type":362,"fixed_in":9},"5.17"]