CVE-2026-23075

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a memory leak in the esd usb read bulk callback() function. This issue occurs because the USB framework unanchors URBs before the completion function is called, preventing their release in esd usb close(). The fix involves anchoring the URB in the esd usb read bulk callback() function to the dev->rx submitted anchor. This issue is similar to a previously resolved memory leak in the gs usb receive bulk callback() function (commit 7352e1d5932a). The vulnerability affects USB-in transfers managed through URBs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

CVE-2026-23075

ECHO-0310-83FC-3009

USN-8162-1

USN-8180-1

USN-8180-2

USN-8180-3

USN-8180-4

USN-8180-5

USN-8180-6

USN-8186-1

USN-8187-1

USN-8188-1

USN-8243-1

USN-8275-1

USN-8278-1

USN-8278-2

USN-8289-1

USN-8289-2

USN-8296-1

USN-8296-2

USN-8297-1

USN-8393-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

CVE-2026-23075

Weakness Enumeration

Related Identifiers

Affected Products

References · 629