CVE-2026-23082

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-23082
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23082.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-23082
Downstream
Published
2026-02-04T16:08:06.731Z
Modified
2026-02-09T20:53:57.996277Z
Summary
can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error
Details

In the Linux kernel, the following vulnerability has been resolved:

can: gsusb: gsusbreceivebulkcallback(): unanchor URL on usbsubmit_urb() error

In commit 7352e1d5932a ("can: gsusb: gsusbreceivebulkcallback(): fix URB memory leak"), the URB was re-anchored before usbsubmiturb() in gsusbreceivebulk_callback() to prevent a leak of this URB during cleanup.

However, this patch did not take into account that usbsubmiturb() could fail. The URB remains anchored and usbkillanchoredurbs(&parent->rxsubmitted) in gscanclose() loops infinitely since the anchor list never becomes empty.

To fix the bug, unanchor the URB when an usbsubmiturb() error occurs, also print an info message.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23082.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ec5ccc2af9e5b045671f3f604b57512feda8bcc5
Fixed
aa8a8866c533a150be4763bcb27993603bd5426c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f905bcfa971edb89e398c98957838d8c6381c0c7
Fixed
ce4352057fc5a986c76ece90801b9755e7c6e56c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
08624b7206ddb9148eeffc2384ebda2c47b6d1e9
Fixed
c610b550ccc0438d456dfe1df9f4f36254ccaae3
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
9f669a38ca70839229b7ba0f851820850a2fe1f7
Fixed
c3edc14da81a8d8398682f6e4ab819f09f37c0b7
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7352e1d5932a0e777e39fa4b619801191f57e603
Fixed
79a6d1bfe1148bc921b8d7f3371a7fbce44e30f7

Affected versions

v6.*
v6.12.67
v6.18.7
v6.19-rc5

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23082.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.12.67
Fixed
6.12.68
Type
ECOSYSTEM
Events
Introduced
6.18.7
Fixed
6.18.8

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23082.json"