CVE-2026-53252 is a vulnerability in Linux Kernel
Published on June 25, 2026
Bluetooth: fix memory leak in error path of hci_alloc_dev()
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: fix memory leak in error path of hci_alloc_dev()
Early failures in Bluetooth HCI UART configuration leak SRCU percpu
memory.
When device initialization fails before hci_register_dev() completes,
the HCI_UNREGISTER flag is never set. As a result, when the device
reference count reaches zero, bt_host_release() evaluates this flag as
false and falls back to a direct kfree(hdev).
Because hci_release_dev() is bypassed, the SRCU struct initialized
early in hci_alloc_dev() is never cleaned up, resulting in a leak of
percpu memory.
Fix the leak by explicitly calling cleanup_srcu_struct() in the
fallback (unregistered) branch of bt_host_release() before freeing
the device.
Products Associated with CVE-2026-53252
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 90dee0a0ff84fac8accd5be98412b3819f667149 and below 5b7dfca6f852e6b9d809fd0263b5427cc9fb33fd is affected.
- Version c56b177efce8b62798e4d96bdb9867106cb7c4a0 and below c016118b9e51eeaf5bc93850d4c455a3b583c0aa is affected.
- Version bc0819a25e04cd68ef3568cfa51b63118fea39a7 and below 0622e527a31d4b44737fed5c1a2ac1fc2cfb5184 is affected.
- Version ce23b73f0f27e2dbeb81734a79db710f05aa33c6 and below bc2efe73c194a74839d7cf57b63880d97e21d309 is affected.
- Version 1d6123102e9fbedc8d25bf4731da6d513173e49e and below ce4b4cac3c5749b6aa75e62e2991ae2263f2f889 is affected.
- Version 1d6123102e9fbedc8d25bf4731da6d513173e49e and below f82799407a50af7bcacacf09cc9b279af8fe9b81 is affected.
- Version 1d6123102e9fbedc8d25bf4731da6d513173e49e and below 37b3009bf5976e8ab77c8b9a9bc3bbd7ff49e37f is affected.
- Version dd4becd3fd4102696e1c15e6d260a1712a2d8685 is affected.
- Version 0e5c144c557df910ab64d9c25d06399a9a735e65 is affected.
- Version 5.15.209 and below 5.15.210 is affected.
- Version 6.1.167 and below 6.1.176 is affected.
- Version 6.6.97 and below 6.6.143 is affected.
- Version 6.12.36 and below 6.12.94 is affected.
- Version 5.10.259 and below 5.11 is affected.
- Version 6.15.5 and below 6.16 is affected.
- Version 6.16 is affected.
- Before 6.16 is unaffected.
- Version 5.15.210, <= 5.15.* is unaffected.
- Version 6.1.176, <= 6.1.* is unaffected.
- Version 6.6.143, <= 6.6.* is unaffected.
- Version 6.12.94, <= 6.12.* is unaffected.
- Version 6.18.36, <= 6.18.* is unaffected.
- Version 7.0.13, <= 7.0.* is unaffected.
- Version 7.1, <= * is unaffected.