CVE-2022-3565: Linux Kernel Bluetooth l1oip_core.c del_timer use after free

Published Oct 17, 2022
·
Updated

A use-after-free in the function deltimer of the file drivers/isdn/mISDN/l1oipcore.c of the component Bluetooth in Linux Kernel could allow a remote authenticated attacker from within the local network to cause an unknown impact.

Other sources

A vulnerability has been found in Linux Kernel. Affected by this issue is the function deltimer of the file drivers/isdn/mISDN/l1oipcore.c of the ISDN (for the ISDN over IP tunnel). The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211088.

Reference: https://vuldb.com/?id.211088

Upstream patch: https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=2568a7e0832ee30b0a351016d03062ab4e0e0a3f

Red Hat

A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function deltimer of the file drivers/isdn/mISDN/l1oipcore.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211088.

Affected Software

14 affected componentsFixes available
redhat/kernel<6.1
6.1
Linux Linux kernel>=2.6.27<4.9.331
Linux Linux kernel>=4.10<4.14.296
Linux Linux kernel>=4.15<4.19.262
Linux Linux kernel>=4.20<5.4.220
Linux Linux kernel>=5.5<5.10.150
Linux Linux kernel>=5.11<5.15.75
Linux Linux kernel>=5.16<5.19.17
Linux Linux kernel>=6.0<6.0.3
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.22-16.12.25-1

Remediation

Patch Available

https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=2568a7e0832ee30b0a351016d03062ab4e0e0a3f

Event History

Oct 17, 2022
CVE Published
via MITRE·12:00 AM
Data Sourced
via MITRE·12:00 AM
DescriptionSeverityWeakness
Dec 5, 2022
Data Sourced
via Red Hat·05:30 PM
DescriptionSeverityAffected Software
Jul 18, 2023
Data Sourced
10:20 AM
Description
May 2, 2025
Data Sourced
via Ubuntu·04:47 AM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2022-3565?

CVE-2022-3565 is classified as a high-severity vulnerability due to its potential for exploitation through use after free in the Linux Kernel.

2

Which versions of the Linux Kernel are affected by CVE-2022-3565?

CVE-2022-3565 affects Linux Kernel versions from 2.6.27 up to but not including versions 6.1 and those within specific ranges outlined in the vulnerability report.

3

How do I fix CVE-2022-3565?

To fix CVE-2022-3565, apply the recommended patches or upgrade to the updated versions of the Linux Kernel specified in the vulnerability details.

4

What components are primarily affected by CVE-2022-3565?

CVE-2022-3565 primarily affects the del_timer function within the ISDN over IP tunnel in the Linux Kernel.

5

Is CVE-2022-3565 exploited in the wild?

As of the latest updates, there is no confirmed evidence that CVE-2022-3565 is being actively exploited in the wild.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203