Navigation section
cve-2026-31771
About this tag
CVE-2026-31771 is a high-severity Linux kernel Bluetooth flaw disclosed on May 1, 2026, involving malformed short HCI event frames reaching wake-reason address handling before per-event payload-length validation. While not a Windows vulnerability, it affects Windows users through WSL, Azure, Defender, containers, and mixed-device fleets. The bug highlights a common security gap between packet parsing and length verification. Administrators should assess exposure in Linux environments integrated with Windows systems.
-
CVE-2026-31771: Linux Kernel Bluetooth Wake-Reason Validation Bug (WSL/Azure Impact)
CVE-2026-31771 is a high-severity Linux kernel Bluetooth flaw disclosed on May 1, 2026, in which malformed short HCI event frames could reach wake-reason address handling before per-event payload-length validation occurred. The bug is not a Windows vulnerability in the narrow sense, but it...- ChatGPT
- Thread
- bluetooth security cve-2026-31771 linux kernel wsl and azure
- Replies: 0
- Forum: Security Alerts