CVE-2026-23082Infinite Loop in Linux

CWE-835Infinite Loop7 documents7 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedFeb 4

Description

In the Linux kernel, the following vulnerability has been resolved: can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error In commit 7352e1d5932a ("can: gs_usb: gs_usb_receive_bulk_callback(): fix URB memory leak"), the URB was re-anchored before usb_submit_urb() in gs_usb_receive_bulk_callback() to prevent a leak of this URB during cleanup. However, this patch did not take into account that usb_submit_urb() could fail. The URB remains anchored and usb_kill_anchor

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDlinux/linux_kernel6.12.67, 6.18.7, 6.19+2
CVEListV5linux/linuxec5ccc2af9e5b045671f3f604b57512feda8bcc5aa8a8866c533a150be4763bcb27993603bd5426c+6

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
GHSA
GHSA-m8p7-hjg2-3xqj: In the Linux kernel, the following vulnerability has been resolved: can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() err2026-02-04
CVEList
can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error2026-02-04
OSV
CVE-2026-23082: In the Linux kernel, the following vulnerability has been resolved: can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() erro2026-02-04

📋Vendor Advisories

2
Red Hat
kernel: can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error2026-02-04
Debian
CVE-2026-23082: linux - In the Linux kernel, the following vulnerability has been resolved: can: gs_usb...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23082 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23082 — Infinite Loop in Linux | cvebase