CVE-2026-31758
- Source
- https://cve.org/CVERecord?id=CVE-2026-31758
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31758.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-31758
- Downstream
- Published
- 2026-05-01T14:14:48.390Z
- Modified
- 2026-05-18T05:59:54.369518200Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- usb: usbtmc: Flush anchored URBs in usbtmc_release
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usb: usbtmc: Flush anchored URBs in usbtmc_release
When calling usbtmcrelease, pending anchored URBs must be flushed or killed to prevent use-after-free errors (e.g. in the HCD giveback path). Call usbtmcdraw_down() to allow anchored URBs to be completed.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31758.json" }- References
-
- https://git.kernel.org/stable/c/7fa8f61bab3fb75b5deba8a0f3abb74dc5068d9f
- https://git.kernel.org/stable/c/8a768552f7a8276fb9e01d49773d2094ace7c8f1
- https://git.kernel.org/stable/c/959ef329071136e4335b54822fe2f607659b4569
- https://git.kernel.org/stable/c/95e09b07e50290254b28b8395509473104518f8c
- https://git.kernel.org/stable/c/977b632db51d231dec0bc571089a5c2402674139
- https://git.kernel.org/stable/c/d13318dec0c1e0e2ac16f8ecbd522db14cea4bb1
- https://git.kernel.org/stable/c/d40198de50232e04c14c6e2092e896766c95ea48
- https://git.kernel.org/stable/c/e189d443767f7cd390c52f2e122e1fc41c7562d6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31758.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-31758
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4f3c8d6eddc272b386464524235440a418ed2029Fixed959ef329071136e4335b54822fe2f607659b4569Fixede189d443767f7cd390c52f2e122e1fc41c7562d6Fixed7fa8f61bab3fb75b5deba8a0f3abb74dc5068d9fFixed95e09b07e50290254b28b8395509473104518f8cFixedd13318dec0c1e0e2ac16f8ecbd522db14cea4bb1Fixed977b632db51d231dec0bc571089a5c2402674139Fixedd40198de50232e04c14c6e2092e896766c95ea48Fixed8a768552f7a8276fb9e01d49773d2094ace7c8f1
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.19.0Fixed5.10.253
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.203
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.168
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.134
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.81
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.22
- Type
- ECOSYSTEM
- Events
-
Introduced6.19.0Fixed6.19.12