Description In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: SCO: Fix UAF on sco_sock_timeout
conn->sk maybe have been unlinked/freed while waiting for sco_conn_lock
so this checks if the conn->sk is still valid by checking if it part of
sco_sk_list.
CVSS vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Exploitability: 1.8 | Impact: 5.9 Attack Vector: Local
Complexity: Low
Privileges: Low
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High
Affected Packages9 packages Show 4 more packages
🔴 Vulnerability Details24 OSV linux-azure-5.15 vulnerabilities ↗ 2025-09-02 ▶ OSV linux-azure-fips vulnerabilities ↗ 2025-08-22 ▶ OSV linux-azure vulnerabilities ↗ 2025-08-22 ▶ OSV linux-raspi vulnerabilities ↗ 2025-08-05 ▶ OSV linux-xilinx-zynqmp vulnerabilities ↗ 2025-07-29 ▶ Show 19 more
📋 Vendor Advisories25 Ubuntu Linux kernel (Azure) vulnerabilities ↗ 2025-09-02 ▶ Ubuntu Linux kernel (Azure FIPS) vulnerabilities ↗ 2025-08-22 ▶ Ubuntu Linux kernel (Azure) vulnerabilities ↗ 2025-08-22 ▶ Ubuntu Linux kernel (Raspberry Pi) vulnerabilities ↗ 2025-08-05 ▶ Ubuntu Linux kernel (Xilinx ZynqMP) vulnerabilities ↗ 2025-07-29 ▶ Show 20 more