Medium severity5.5NVD Advisory· Published May 1, 2026· Updated May 8, 2026
CVE-2026-43022
CVE-2026-43022
Description
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists
hci_cmd_sync_queue_once() needs to indicate whether a queue item was added, so caller can know if callbacks are called, so it can avoid leaking resources.
Change the function to return -EEXIST if queue item already exists.
Modify all callsites to handle that.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=6.9,<6.19.12
- cpe:2.3:o:linux:linux_kernel:6.1.120:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:6.6.51:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:6.8.9:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
- osv-coords8 versionspkg:apk/chainguard/linux-aws-6.12pkg:apk/chainguard/linux-azure-6.12pkg:apk/chainguard/linux-azure-6.18pkg:apk/chainguard/linux-gcp-6.12pkg:apk/chainguard/linux-qemu-6.12pkg:apk/chainguard/linux-qemu-melangepkg:apk/chainguard/linux-vmware-6.12pkg:apk/chainguard/linux-vmware-6.18
< 6.12.85-r2+ 7 more
- (no CPE)range: < 6.12.85-r2
- (no CPE)range: < 6.12.85-r2
- (no CPE)range: < 6.18.24-r1
- (no CPE)range: < 6.12.85-r2
- (no CPE)range: < 6.12.85-r2
- (no CPE)range: < 6.18.28-r0
- (no CPE)range: < 6.12.85-r2
- (no CPE)range: < 6.18.24-r1
Patches
Vulnerability mechanics
References
2News mentions
1- Patch Tuesday - May 2026Rapid7 Blog · May 13, 2026