CVE-2026-43022

Published: May 1, 2026

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists hci_cmd_sync_queue_once() needs to indicate whether a queue item was added, so caller can know if callbacks are called, so it can avoid leaking resources. Change the function to return -EEXIST if queue item already exists. Modify all callsites to handle that.

Vendor	Product	Versions
Linux	Linux	affected `505ea2b295929e7be2b4e1bc86ee31cb7862fb01 - < 0ad2ce230b38cd4b3f6732cc609e270461e626e5` affected `505ea2b295929e7be2b4e1bc86ee31cb7862fb01 - < 2969554bcfccb5c609f6b6cd4a014933f3a66dd0` affected `f00f36db76eb8fd10d13e80e2590f23b5beaa54d` affected `1499f79995c7ee58e3bfeeff75f6d1b37dcda881` affected `357603f4d396d85fbf0045512efaf1d7f7394ed7` +3 more versions
Linux	Linux	affected `6.9` unaffected `0 - < 6.9` unaffected `6.19.12 - <= 6.19.` unaffected `7.0 - <= `

References

https://git.kernel.org/stable/c/0ad2ce230b38cd4b3f6732cc609e270461e626e5

https://git.kernel.org/stable/c/2969554bcfccb5c609f6b6cd4a014933f3a66dd0

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-43022

Description

Affected Products

References