In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_ll: Fix firmware leak on error path
Smatch reports:
drivers/bluetooth/hcill.c:587 downloadfirmware() warn: 'fw' from request_firmware() not released on lines: 544.
In downloadfirmware(), if requestfirmware() succeeds but the returned firmware content is invalid (no data or zero size), the function returns without releasing the firmware, resulting in a resource leak.
Fix this by calling releasefirmware() before returning when requestfirmware() succeeded but the firmware content is invalid.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43069.json",
"cna_assigner": "Linux"
}