CVE-2026-23307

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue within the ems usb read bulk callback() function related to handling USB urb data lengths. The function incorrectly uses the size of the buffer passed to the driver instead of the transfer buffer length when determining message size, potentially leading to buffer overflows during message parsing. Specifically, the code does not properly validate the size of incoming messages, both at the beginning and end of parsing, which could allow for exceeding the buffer boundaries. The actual length variable is used incorrectly.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.