CVE-2026-43069
Published: May 5, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_ll: Fix firmware leak on error path Smatch reports: drivers/bluetooth/hci_ll.c:587 download_firmware() warn: 'fw' from request_firmware() not released on lines: 544. In download_firmware(), if request_firmware() succeeds but the returned firmware content is invalid (no data or zero size), the function returns without releasing the firmware, resulting in a resource leak. Fix this by calling release_firmware() before returning when request_firmware() succeeded but the firmware content is invalid.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 371805522f870986144fcd88727a47858e364a2c - < 95e8601af227b2b4390eecf8db6abdb9f6a91f17affected 371805522f870986144fcd88727a47858e364a2c - < e6d95488c8c964d1df0d3e1db44c958706311e86affected 371805522f870986144fcd88727a47858e364a2c - < b2dfbf1b5ff192cefd49574b951a4af9ddd32213affected 371805522f870986144fcd88727a47858e364a2c - < 28904375d54b436a757641fb0331537778c0de5aaffected 371805522f870986144fcd88727a47858e364a2c - < 5213ef54528dd1ac79b846e30d8f72ce092794aa+3 more versions |
Linux | Linux | affected 4.12unaffected 0 - < 4.12unaffected 5.10.253 - <= 5.10.*unaffected 5.15.203 - <= 5.15.*unaffected 6.1.168 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now