Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-43020
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-01 May, 2026 | 14:15
Updated At-01 May, 2026 | 14:15
Rejected At-
▼CVE Numbering Authority (CNA)
Bluetooth: MGMT: validate LTK enc_size on load

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate LTK enc_size on load Load Long Term Keys stores the user-provided enc_size and later uses it to size fixed-size stack operations when replying to LE LTK requests. An enc_size larger than the 16-byte key buffer can therefore overflow the reply stack buffer. Reject oversized enc_size values while validating the management LTK record so invalid keys never reach the stored key state.

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • net/bluetooth/mgmt.c
Default Status
unaffected
Versions
Affected
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before 0f37d1e65c6d71ad94ccfb5c602163c525db789d (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before 257cdb960d8ff6d60bb6461b03c814b6cf0c9e64 (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before c34577f517b556fb6ca173d45bf7e766ae2564ce (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before f71695e81f4cb428f3c7e2138eae88199005b52c (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before 82f342b3b006ca1d65f4890c05f2ec32fcb808b6 (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before 50fb64defa72a3fecd0af1ca7c6b47b5c5c2b257 (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before 40ba329e8b4cd2fb11b0caf5e6a543ceaebb6009 (git)
  • From 346af67b8d116f01ef696fd47959a55deb2db8b6 before b8dbe9648d69059cfe3a28917bfbf7e61efd7f15 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • net/bluetooth/mgmt.c
Default Status
affected
Versions
Affected
  • 3.4
Unaffected
  • From 0 before 3.4 (semver)
  • From 5.10.253 through 5.10.* (semver)
  • From 5.15.203 through 5.15.* (semver)
  • From 6.1.168 through 6.1.* (semver)
  • From 6.6.134 through 6.6.* (semver)
  • From 6.12.81 through 6.12.* (semver)
  • From 6.18.22 through 6.18.* (semver)
  • From 6.19.12 through 6.19.* (semver)
  • From 7.0 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/0f37d1e65c6d71ad94ccfb5c602163c525db789d
N/A
https://git.kernel.org/stable/c/257cdb960d8ff6d60bb6461b03c814b6cf0c9e64
N/A
https://git.kernel.org/stable/c/c34577f517b556fb6ca173d45bf7e766ae2564ce
N/A
https://git.kernel.org/stable/c/f71695e81f4cb428f3c7e2138eae88199005b52c
N/A
https://git.kernel.org/stable/c/82f342b3b006ca1d65f4890c05f2ec32fcb808b6
N/A
https://git.kernel.org/stable/c/50fb64defa72a3fecd0af1ca7c6b47b5c5c2b257
N/A
https://git.kernel.org/stable/c/40ba329e8b4cd2fb11b0caf5e6a543ceaebb6009
N/A
https://git.kernel.org/stable/c/b8dbe9648d69059cfe3a28917bfbf7e61efd7f15
N/A
Hyperlink: https://git.kernel.org/stable/c/0f37d1e65c6d71ad94ccfb5c602163c525db789d
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/257cdb960d8ff6d60bb6461b03c814b6cf0c9e64
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/c34577f517b556fb6ca173d45bf7e766ae2564ce
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/f71695e81f4cb428f3c7e2138eae88199005b52c
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/82f342b3b006ca1d65f4890c05f2ec32fcb808b6
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/50fb64defa72a3fecd0af1ca7c6b47b5c5c2b257
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/40ba329e8b4cd2fb11b0caf5e6a543ceaebb6009
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/b8dbe9648d69059cfe3a28917bfbf7e61efd7f15
Resource: N/A
Details not found