CVE-2026-43343
MEDIUMusb: gadget: f_subset: Fix unbalanced refcnt in geth_free
Title source: cnaDescription
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free geth_alloc() increments the reference count, but geth_free() fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function. Decrement the reference count in geth_free() to ensure proper cleanup.
References (8)
Core 8
Core References
Scores
CVSS v3
5.5
EPSS
0.0001
EPSS Percentile
2.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (20)
Linux/Linux
< 3.11
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - 23e4851ce348a329d974e84e828155dda9f52122
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - 3d436670b47415da042452618fb5d8e317ab095f
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - 3f5bfc550a40d7493b1cf09540ed6b412b3b82be
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - 75776a055b656873319c3830fed471daef3ceb23
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - a932b171554714b1bca313b853c7aa9f2930f9aa
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - caa27923aacd8a5869207842f2ab1657c6c0c7bc
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - cc8ec610cd14c093a19371691a7ce1ee5421e829
Linux/Linux
02832e56f88a981474ee4c7c141f46fc1b4454f4 - d7d702407b61e96286a15b6e715572f541a8d41c
Linux/Linux
3.11
... and 10 more
Published
May 08, 2026
Tracked Since
May 08, 2026