Bluetooth Connection Issue in Linux Kernel Affects Multiple Versions
CVE-2026-53251

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 June 2026

What is CVE-2026-53251?

A vulnerability in the Linux kernel affects the Bluetooth subsystem where the function hci_get_route() fails to release a reference-counted hci_dev pointer, potentially leading to resource leaks. This issue arises when the function exits due to normal operation or an error without properly managing the held reference, which can ultimately degrade system performance and stability. Users are advised to apply the latest patches and updates to mitigate risks associated with this vulnerability.

Affected Version(s)

Linux 1360e5b6ce63d63d23223a659ca2bbafa30a53aa < 4bbec25f47b930101294fd310c627c3f53e9661f

Linux 07a9342b94a91b306ed1cf6aa8254aea210764c9 < 33d677d2e3713d98012c3dbd4a9207f7d785b854

Linux 07a9342b94a91b306ed1cf6aa8254aea210764c9 < 23e8eb16820b866528fb300dc67fe3f67f00ef62

References

https://git.kernel.org/stable/c/4bbec25f47b930101294fd310...

https://git.kernel.org/stable/c/33d677d2e3713d98012c3dbd4...

https://git.kernel.org/stable/c/23e8eb16820b866528fb300dc...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53251 Data

JSON