{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-43069","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-05-01T14:12:55.982Z","datePublished":"2026-05-05T15:23:28.120Z","dateUpdated":"2026-05-11T22:17:07.130Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T22:17:07.130Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_ll: Fix firmware leak on error path\n\nSmatch reports:\n\ndrivers/bluetooth/hci_ll.c:587 download_firmware() warn:\n'fw' from request_firmware() not released on lines: 544.\n\nIn download_firmware(), if request_firmware() succeeds but the returned\nfirmware content is invalid (no data or zero size), the function returns\nwithout releasing the firmware, resulting in a resource leak.\n\nFix this by calling release_firmware() before returning when\nrequest_firmware() succeeded but the firmware content is invalid."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/bluetooth/hci_ll.c"],"versions":[{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"95e8601af227b2b4390eecf8db6abdb9f6a91f17","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"e6d95488c8c964d1df0d3e1db44c958706311e86","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"b2dfbf1b5ff192cefd49574b951a4af9ddd32213","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"28904375d54b436a757641fb0331537778c0de5a","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"5213ef54528dd1ac79b846e30d8f72ce092794aa","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"9ecbfd93cd6de6c78cb7fd51fe079e36c7ff074b","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"a7803df606a7d22e896b030f619e1d9d20ae0c6b","status":"affected","versionType":"git"},{"version":"371805522f870986144fcd88727a47858e364a2c","lessThan":"31148a7be723aa9f2e8fbd62424825ab8d577973","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/bluetooth/hci_ll.c"],"versions":[{"version":"4.12","status":"affected"},{"version":"0","lessThan":"4.12","status":"unaffected","versionType":"semver"},{"version":"5.10.253","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.203","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.168","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.131","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.80","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.21","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.11","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"5.10.253"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"5.15.203"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.1.168"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.6.131"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.12.80"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.18.21"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.19.11"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"7.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/95e8601af227b2b4390eecf8db6abdb9f6a91f17"},{"url":"https://git.kernel.org/stable/c/e6d95488c8c964d1df0d3e1db44c958706311e86"},{"url":"https://git.kernel.org/stable/c/b2dfbf1b5ff192cefd49574b951a4af9ddd32213"},{"url":"https://git.kernel.org/stable/c/28904375d54b436a757641fb0331537778c0de5a"},{"url":"https://git.kernel.org/stable/c/5213ef54528dd1ac79b846e30d8f72ce092794aa"},{"url":"https://git.kernel.org/stable/c/9ecbfd93cd6de6c78cb7fd51fe079e36c7ff074b"},{"url":"https://git.kernel.org/stable/c/a7803df606a7d22e896b030f619e1d9d20ae0c6b"},{"url":"https://git.kernel.org/stable/c/31148a7be723aa9f2e8fbd62424825ab8d577973"}],"title":"Bluetooth: hci_ll: Fix firmware leak on error path","x_generator":{"engine":"bippy-1.2.0"}}}}