CVE-2022-50339

HIGH EPSS 1.0%

Published Sep 16, 20259mo ago · Modified Jun 17, 20261w ago

7.0 CVSS 3.1

High

Published Sep 16, 2025 9mo ago

Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: avoid hci_dev_test_and_set_flag() in mgmt_init_hdev() syzbot is again reporting attempt to cancel uninitialized work at mgmt_index_removed() [1], for setting of HCI_MGMT flag from mgmt_init_hdev() from hci_mgmt_cmd() from hci_sock_sendmsg() can race with testing of HCI_MGMT flag from mgmt_index_removed() from hci_sock_bind() due to lack of serialization via hci_dev_lock(). Since mgmt_init_hdev() is called with mgmt_chan_list_lock held, we can safely split hci_dev_test_and_set_flag() into hci_dev_test_flag() and hci_dev_set_flag(). Thus, in order to close this race, set HCI_MGMT flag after INIT_DELAYED_WORK() completed. This is a local fix based on mgmt_chan_list_lock. Lack of serialization via hci_dev_lock() might be causing different race conditions somewhere else. But a global fix based on hci_dev_lock() should deserve a future patch.

CVSS Details

Base Score

7.0

Exploitability

1.0

Impact

5.9

Vector string

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector Local

Attack Complexity High

Privileges Required Low

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

1.0% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

Weaknesses 1

CWE-362

Affected Products 1

Vendor	Product	Version	Range
linux	linux_kernel	*	≥6.0 – <6.0.3

References 2

git.kernel.org https://git.kernel.org/stable/c/e53c6180db8dd09de94e0a3bdf4fef6f5f9dd6e6

Patch
git.kernel.org https://git.kernel.org/stable/c/f74ca25d6d6629ffd4fd80a1a73037253b57d06b

Patch

Remediation

git.kernel.org https://git.kernel.org/stable/c/e53c6180db8dd09de94e0a3bdf4fef6f5f9dd6e6

Patch
git.kernel.org https://git.kernel.org/stable/c/f74ca25d6d6629ffd4fd80a1a73037253b57d06b

Patch