Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb()

Summary

CVE	CVE-2026-45835
State	PUBLISHED
Assigner	Linux
Source Priority	CVE Program / NVD first with legacy fallback
Published	2026-05-26 17:16:48 UTC
Updated	2026-06-01 17:17:11 UTC
Description	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() Add the same NULL guard already present in l2cap_sock_resume_cb() and l2cap_sock_ready_cb().

Risk And Classification

EPSS: 0.000240000 probability, percentile 0.070110000 (date 2026-06-01)

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a 140b63cb46f2855ac4ec8fba2f1e974a9c2974e8 git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a 2422eaed0925973c0f318c94eb13e76f14c7381e git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a 684a1f9ee2325437ae18ac5371884e4c6a25ae73 git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a ab77c8bc30269bee15d917059a66bea48909f5f0 git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a bc3bb9f40da8e53896abc2d29c6d0c6686fe4ab9 git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a 741e6024e31587b0c021b6616a9e428a4ea0b64a git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a 76083fb80f5a38ac13326b2d810f66bd07771eea git	Not specified
CNA	Linux	Linux	affected 80808e431e1ef25856457de82ce141bed6a6313a 0a120d96166301d7a95be75b52f843837dbd1219 git	Not specified
CNA	Linux	Linux	affected 3.1	Not specified
CNA	Linux	Linux	unaffected 3.1 semver	Not specified
CNA	Linux	Linux	unaffected 5.10.258 5.10.* semver	Not specified
CNA	Linux	Linux	unaffected 5.15.209 5.15.* semver	Not specified
CNA	Linux	Linux	unaffected 6.1.175 6.1.* semver	Not specified
CNA	Linux	Linux	unaffected 6.6.140 6.6.* semver	Not specified
CNA	Linux	Linux	unaffected 6.12.88 6.12.* semver	Not specified
CNA	Linux	Linux	unaffected 6.18.30 6.18.* semver	Not specified
CNA	Linux	Linux	unaffected 7.0.7 7.0.* semver	Not specified
CNA	Linux	Linux	unaffected 7.1-rc3 * original_commit_for_fix	Not specified

References

Reference	Source	Link	Tags
git.kernel.org/stable/c/741e6024e31587b0c021b6616a9e428a4ea0b64a	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/76083fb80f5a38ac13326b2d810f66bd07771eea	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/2422eaed0925973c0f318c94eb13e76f14c7381e	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/140b63cb46f2855ac4ec8fba2f1e974a9c2974e8	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/ab77c8bc30269bee15d917059a66bea48909f5f0	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/684a1f9ee2325437ae18ac5371884e4c6a25ae73	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/bc3bb9f40da8e53896abc2d29c6d0c6686fe4ab9	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/0a120d96166301d7a95be75b52f843837dbd1219	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.