CVE-2026-23015 — Linux vulnerability

7 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 94.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedJan 31

Description

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths The reference obtained by calling usb_get_dev() is not released in the gpio_mpsse_probe() error paths. Fix that by using device managed helper functions. Also remove the usb_put_dev() call in the disconnect function since now it will be released automatically.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

▶Linuxlinux/linux_kernel6.13.0 — 6.18.6

▶NVDlinux/linux_kernel6.13.1 — 6.18.6+2

▶Debianlinux/linux_kernel< 6.18.8-1

▶CVEListV5linux/linuxc46a74ff05c0ac76ba11ef21c930c3b447abf31a — 7ea26e6dcabc270433b6ded2a1aee85b215d1b28+2

▶debiandebian/linux< linux 6.18.8-1 (forky)

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

CVE-2026-23015: In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths The reference ob↗2026-01-31

▶

GHSA

GHSA-8c2x-26r6-wgh6: In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths The reference↗2026-01-31

▶

OSV

gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths↗2026-01-31

▶

📋Vendor Advisories

Red Hat

kernel: gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths↗2026-01-31

▶

Debian

CVE-2026-23015: linux - In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-23015 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶