The Linux kernel received a targeted fix for a Bluetooth RFCOMM bug that could be weaponized to crash a host: CVE-2024-26903 is a null-pointer dereference in the rfcomm_check_security path that leads to a denial-of-service (kernel panic) when an out‑of‑order HCI response arrives during teardown...
