CVE-2026-23291

ANALYSIS PENDING

nfc: pn533: properly drop the usb interface reference on disconnect

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: properly drop the usb interface reference on disconnect When the device is disconnected from the driver, there is a "dangling" reference count on the usb interface that was grabbed in the probe callback. Fix this up by properly dropping the reference after we are done with it.

References (8)

Core 8

Core References

https://git.kernel.org/stable/c/7398d6570501edc55a50ece820f369ab3c1df2e7

https://git.kernel.org/stable/c/6645b030b0c1fc5bf338bffb0044238f24b2f770

https://git.kernel.org/stable/c/5be8aa2bcfb53158436182db8dee9d0b8e5901e6

https://git.kernel.org/stable/c/d1f6d20b3c2642ec85ce6ea5da7155746c31c6d0

https://git.kernel.org/stable/c/7ff14eb070f0efecb2606f8d7aa01b77d188e886

https://git.kernel.org/stable/c/00477cab053dc4816b99141d8fcca7a479cfebeb

https://git.kernel.org/stable/c/4551d6cea00224ab65a0ef35e4e6da0e9c0a2d74

https://git.kernel.org/stable/c/12133a483dfa832241fbbf09321109a0ea8a520e

Scores

EPSS 0.0003

EPSS Percentile 10.5%

Details

Status published

Products (24)

linux/Kernel 3.1.0 - 6.1.167linux

linux/Kernel 6.13.0 - 6.18.17linux

linux/Kernel 6.19.0 - 6.19.7linux

linux/Kernel 6.2.0 - 6.6.130linux

linux/Kernel 6.7.0 - 6.12.77linux

Linux/Linux < 3.1

Linux/Linux 3.1

Linux/Linux 5.10.253 - 5.10.*

Linux/Linux 5.15.203 - 5.15.*

Linux/Linux 6.1.167 - 6.1.*

... and 14 more

Published Mar 25, 2026

Tracked Since Mar 25, 2026