5.5
CVE-2026-23155
- EPSS 0.12%
- Veröffentlicht 14.02.2026 16:15:55
- Zuletzt bearbeitet 18.04.2026 09:16:14
- CVE-Watchlists
- Unerledigt
can: gs_usb: gs_usb_receive_bulk_callback(): fix error message
In the Linux kernel, the following vulnerability has been resolved:
can: gs_usb: gs_usb_receive_bulk_callback(): fix error message
Sinc commit 79a6d1bfe114 ("can: gs_usb: gs_usb_receive_bulk_callback():
unanchor URL on usb_submit_urb() error") a failing resubmit URB will print
an info message.
In the case of a short read where netdev has not yet been assigned,
initialize as NULL to avoid dereferencing an undefined value. Also report
the error value of the failed resubmit.Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version6.6.122
Linux ≫ Linux Kernel Version6.12.68
Linux ≫ Linux Kernel Version6.18.8
Linux ≫ Linux Kernel Version6.19 Updaterc7
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.018 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://git.kernel.org/stable/c/494fc029f662c331e06b7c2031deff3c64200eed
https://git.kernel.org/stable/c/713ba826ae114ab339c9a1b31e209bebdadb0ac9
https://git.kernel.org/stable/c/8986cdf52f86208df9c7887fee23365b5d37da26
https://git.kernel.org/stable/c/923379f1d7e3af8ccbf11edbbcf41f1bb3e9cfe6
https://git.kernel.org/stable/c/aed58a28ea71a0d7d0947190fab1e3f4daa1d4a5
https://git.kernel.org/stable/c/7a431df418ee6b79841e0b4c7c265a791e3d0a75