CVE-2026-43223
Published: May 6, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix URB leak in pvr2_send_request_ex When pvr2_send_request_ex() submits a write URB successfully but fails to submit the read URB (e.g. returns -ENOMEM), it returns immediately without waiting for the write URB to complete. Since the driver reuses the same URB structure, a subsequent call to pvr2_send_request_ex() attempts to submit the still-active write URB, triggering a 'URB submitted while active' warning in usb_submit_urb(). Fix this by ensuring the write URB is unlinked and waited upon if the read URB submission fails.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d855497edbfbf9e19a17f4a1154bca69cb4bd9ba - < da524c939b1e5ba17f10db4bde4bdaf569ffcda6affected d855497edbfbf9e19a17f4a1154bca69cb4bd9ba - < cf459d6ffa5e150ef3744b897f936ff24b52bd15affected d855497edbfbf9e19a17f4a1154bca69cb4bd9ba - < 77a63f8efc434ddb04667ed632aade58301a2f13affected d855497edbfbf9e19a17f4a1154bca69cb4bd9ba - < 4ba5c7a1aade7090172cbffd4d120bf4cf5ccbdeaffected d855497edbfbf9e19a17f4a1154bca69cb4bd9ba - < 58dd722b6c3debcddb4684fb256c90fee7f063e5+3 more versions |
Linux | Linux | affected 2.6.18unaffected 0 - < 2.6.18unaffected 5.10.252 - <= 5.10.*unaffected 5.15.202 - <= 5.15.*unaffected 6.1.165 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now