{"id":"CVE-2023-53145","summary":"Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition\n\nIn btsdio_probe, the data-\u003ework is bound with btsdio_work. It will be\nstarted in btsdio_send_frame.\n\nIf the btsdio_remove runs with a unfinished work, there may be a race\ncondition that hdev is freed but used in btsdio_work. Fix it by\ncanceling the work before do cleanup in btsdio_remove.","modified":"2026-04-03T13:14:40.350140042Z","published":"2025-05-10T14:19:14.932Z","related":["SUSE-SU-2025:01918-1","SUSE-SU-2025:01966-1","SUSE-SU-2025:01983-1","SUSE-SU-2025:02173-1","SUSE-SU-2025:02262-1","SUSE-SU-2025:02334-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53145.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/179c65828593aff1f444e15debd40a477cb23cf4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3efcbf25e5ab4d4ad1b7e6ba0869ff85540e3f6e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6c3653627397a0d6eab19b20a59423e118985a6b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/73f7b171b7c09139eb3c6a5677c200dc1be5f318"},{"type":"WEB","url":"https://git.kernel.org/stable/c/746b363bef41cc159c051c47f9e30800bc6b520d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a5c2a467e9e789ae0891de55b766daac52e3b7b3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a6650d27ab2c12a8ee750f396edb5ac8b4558b2e"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53145.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53145"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"ddbaf13e3609442b64abb931ac21527772d87980"},{"fixed":"6c3653627397a0d6eab19b20a59423e118985a6b"},{"fixed":"3efcbf25e5ab4d4ad1b7e6ba0869ff85540e3f6e"},{"fixed":"a6650d27ab2c12a8ee750f396edb5ac8b4558b2e"},{"fixed":"746b363bef41cc159c051c47f9e30800bc6b520d"},{"fixed":"a5c2a467e9e789ae0891de55b766daac52e3b7b3"},{"fixed":"179c65828593aff1f444e15debd40a477cb23cf4"},{"fixed":"73f7b171b7c09139eb3c6a5677c200dc1be5f318"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53145.json"}}],"schema_version":"1.7.5"}