Security Advisory

CVE-2026-31511

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-22 13:54:29
Last updated 2026-05-23 16:05:14
Assigner Linux
State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete This fixes the condition checking so mgmt_pending_valid is executed whenever status != -ECANCELED otherwise calling mgmt_pending_free(cmd) would kfree(cmd) without unlinking it from the list first, leaving a dangling pointer. Any subsequent list traversal (e.g., mgmt_pending_foreach during __mgmt_power_off, or another mgmt_pending_valid call) would dereference freed memory.