CVE - CVE-2023-53063

CVE-ID
CVE-2023-53063	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work In btsdio_probe, &data->work was bound with btsdio_work.In btsdio_send_frame, it was started by schedule_work. If we call btsdio_remove with an unfinished job, there may be a race condition and cause UAF bug on hdev.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/1e9ac114c4428fdb7ff4635b45d4f46017e8916f URL:https://git.kernel.org/stable/c/1e9ac114c4428fdb7ff4635b45d4f46017e8916f MISC:https://git.kernel.org/stable/c/8efae2112d910d8e5166dd0a836791b08721eef1 URL:https://git.kernel.org/stable/c/8efae2112d910d8e5166dd0a836791b08721eef1 MISC:https://git.kernel.org/stable/c/95eacef5692545f199fae4e52abfbfa273acb351 URL:https://git.kernel.org/stable/c/95eacef5692545f199fae4e52abfbfa273acb351 MISC:https://git.kernel.org/stable/c/a18fb433ceb56e0787546a9d77056dd0f215e762 URL:https://git.kernel.org/stable/c/a18fb433ceb56e0787546a9d77056dd0f215e762 MISC:https://git.kernel.org/stable/c/af4d48754d5517d33bac5e504ff1f1de0808e29e URL:https://git.kernel.org/stable/c/af4d48754d5517d33bac5e504ff1f1de0808e29e MISC:https://git.kernel.org/stable/c/c59c65a14e8f7d738429648833f3bb3f9df0513f URL:https://git.kernel.org/stable/c/c59c65a14e8f7d738429648833f3bb3f9df0513f MISC:https://git.kernel.org/stable/c/cbf8deacb7053ce3e3fed64b277c6c6989e65bba URL:https://git.kernel.org/stable/c/cbf8deacb7053ce3e3fed64b277c6c6989e65bba MISC:https://git.kernel.org/stable/c/da3d3fdfb4d523c5da30e35a8dd90e04f0fd8962 URL:https://git.kernel.org/stable/c/da3d3fdfb4d523c5da30e35a8dd90e04f0fd8962
Assigning CNA
kernel.org
Date Record Created
20250502	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20250502)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2025, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.