CVE-2026-43343

Source
https://cve.org/CVERecord?id=CVE-2026-43343
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43343.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43343
Downstream
Published
2026-05-08T13:37:20.663Z
Modified
2026-07-15T01:49:21.676687378Z
Summary
usb: gadget: f_subset: Fix unbalanced refcnt in geth_free
Details

In the Linux kernel, the following vulnerability has been resolved:

usb: gadget: fsubset: Fix unbalanced refcnt in gethfree

gethalloc() increments the reference count, but gethfree() fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function.

Decrement the reference count in geth_free() to ensure proper cleanup.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43343.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
02832e56f88a981474ee4c7c141f46fc1b4454f4
Fixed
a932b171554714b1bca313b853c7aa9f2930f9aa
Fixed
d7d702407b61e96286a15b6e715572f541a8d41c
Fixed
3f5bfc550a40d7493b1cf09540ed6b412b3b82be
Fixed
75776a055b656873319c3830fed471daef3ceb23
Fixed
cc8ec610cd14c093a19371691a7ce1ee5421e829
Fixed
3d436670b47415da042452618fb5d8e317ab095f
Fixed
23e4851ce348a329d974e84e828155dda9f52122
Fixed
caa27923aacd8a5869207842f2ab1657c6c0c7bc

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43343.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.11.0
Fixed
5.10.253
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.203
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.168
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.134
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.81
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.22
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.12

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43343.json"