CVE-2026-10653 | zephyrproject zephyr up to 4.4.x lib/net_buf/buf.c net_buf_unref double free (GHSA-284j-5jm9-55hh)

SecurityVulns

A vulnerability identified as problematic has been detected in zephyrproject zephyr up to 4.4.x. The impacted element is the function net_buf_unref of the file lib/net_buf/buf.c. This manipulation of the argument ref causes double free.

This vulnerability is tracked as CVE-2026-10653. The attack is only possible within the local network. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More