Google security researchers are warning of a new set of zero-click vulnerabilities in the Linux Bluetooth software stack. The three flaws reside in the open-source BlueZ protocol stack that offers support for many of the core Bluetooth layers and protocols for Linux-based systems such as laptops and IoT devices. The most severe is a heap-based type confusion (CVE-2020-12351, CVSS score 8.3) affecting Linux kernel 4.8 and higher and is present in the Logical Link Control and Adaptation Protocol (L2CAP) of the Bluetooth standard.
Source: https://thehackernews.com/2020/10/linux-Bluetooth-hacking.html