CVE-2026-53255 | Linux Kernel up to 7.0.12 Bluetooth tlv_data_is_valid length out-of-bounds (Nessus ID 323428)
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 7.0.12. The impacted element is the function tlv_data_is_valid of the component Bluetooth. The manipulation of the argument length leads to out-of-bounds read.
This vulnerability is uniquely identified as CVE-2026-53255. The attack can only be initiated within the local network. No exploit exists.
It is advisable to upgrade the affected component.