CVE-2026-43421

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw in the usb gadget f ncm component allows a network device to outlive its parent gadget device during disconnection. This leads to dangling sysfs links and null pointer dereference problems. The issue is addressed by using device move to reparent the net device between the gadget device and /sys/devices/virtual/ during bind and unbind cycles, which maintains the network interface across USB reconnections.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.