CVE-2026-43342

Source
https://cve.org/CVERecord?id=CVE-2026-43342
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43342.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43342
Downstream
Published
2026-05-08T13:37:19.920Z
Modified
2026-07-15T01:49:12.548330553Z
Summary
usb: gadget: f_rndis: Protect RNDIS options with mutex
Details

In the Linux kernel, the following vulnerability has been resolved:

usb: gadget: f_rndis: Protect RNDIS options with mutex

The class/subclass/protocol options are suspectible to race conditions as they can be accessed concurrently through configfs.

Use existing mutex to protect these options. This issue was identified during code inspection.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43342.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
73517cf49bd449122b615d2b7a6bb835f02252e5
Fixed
0a75d97c53477a59c0aa1c65f69038c719f9c5b8
Fixed
c1b3d5b0acb194efe20fc5864ee03439fa7bd45c
Fixed
65b7dbf80a1627667c241fff7c1c224f3118014f
Fixed
cb5316b37288ab8791584e32f114c4f41ad45b67
Fixed
7d8fa3b8783ab95a46e20d97fbeeede719b2efda
Fixed
446f1842cda929c40d4697722bfdcfb334bc9692
Fixed
209decd3f7901df9842b83f2540dc8685e344a07
Fixed
8d8c68b1fc06ece60cf43e1306ff0f4ac121547e

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43342.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.14.0
Fixed
5.10.253
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.203
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.168
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.134
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.81
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.22
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.12

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43342.json"