Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error In commit 7352e1d5932a ("can: gs_usb: gs_usb_receive_bulk_callback(): fix URB memory leak"), the URB was re-anchored before usb_submit_urb() in gs_usb_receive_bulk_callback() to prevent a leak of this URB during cleanup. However, this patch did not take into account that usb_submit_urb() could fail. The URB remains anchored and usb_kill_anchored_urbs(&parent->rx_submitted) in gs_can_close() loops infinitely since the anchor list never becomes empty. To fix the bug, unanchor the URB when an usb_submit_urb() error occurs, also print an info message.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 6.12.67 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/79a6d1bfe1148bc921b8d7f3371a7fbce44e30f7Patch
- https://git.kernel.org/stable/c/aa8a8866c533a150be4763bcb27993603bd5426cPatch
- https://git.kernel.org/stable/c/c3edc14da81a8d8398682f6e4ab819f09f37c0b7Patch
- https://git.kernel.org/stable/c/c610b550ccc0438d456dfe1df9f4f36254ccaae3Patch
- https://git.kernel.org/stable/c/ce4352057fc5a986c76ece90801b9755e7c6e56cPatch
- https://git.kernel.org/stable/c/da01de754e455e2598a7f1ce4ff2078c4f0ecde1
FAQ
What is CVE-2026-23082?
CVE-2026-23082 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error In commit 7352e1d5932a ("can: gs_usb: gs_usb_r...
How severe is CVE-2026-23082?
CVE-2026-23082 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-23082?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.