In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hciconn: Fix memory leak in hcilebigterminate()
hcilebigterminate() allocates isolistdata via kzallocobj but returns 0 without freeing it when neither pasyncterm nor bigsyncterm flags are set after evaluating the PA and BIG sync connection state.
This early-return path was introduced when hcilebigterminate() was refactored to take struct hciconn instead of raw u8 parameters, adding PA/BIG flag evaluation logic. The existing kfree() on hcicmdsync_queue failure does not cover this path.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53364.json",
"cna_assigner": "Linux"
}