VDB
CVE-2026-43020
CVE-2026-43020
PUBLISHED
Reported by Linux · Published May 1, 2026
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate LTK enc_size on load Load Long Term Keys stores the user-provided enc_size and later uses it to size fixed-size stack operations when replying to LE LTK requests. An enc_size larger than the 16-byte key buffer can therefore overflow the reply stack buffer. Reject oversized enc_size values while validating the management LTK record so invalid keys never reach the stored key state.
EPSS 0.01% · 2.5th percentile
Risk Scores
EPSS Score
0.01%
2.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | 346af67b8d116f01ef696fd47959a55deb2db8b6, 346af67b8d116f01ef696fd47959a55deb2db8b6, 346af67b8d116f01ef696fd47959a55deb2db8b6 |
| Linux | Linux | 3.4, 0, 5.10.253 |
| Linux | Linux | 5.15.203, 5.10.253, 6.1.168 |
| linux | linux_kernel | 3.4, 3.4, 3.4 |
Timeline
- May 1, 2026 CVE Published
- May 8, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
- May 27, 2026 EPSS Score