OESA-2026-1762

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2026-1762

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2026-1762.json

JSON Data

https://api.test.osv.dev/v1/vulns/OESA-2026-1762

Upstream

CVE-2023-53548

Published

2026-03-27T14:07:32Z

Modified

2026-03-27T14:19:22.165779Z

Summary

kernel security update

Details

The Linux Kernel, the operating system core itself.

Security Fix(es):

In the Linux kernel, the following vulnerability has been resolved:

net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb

The syzbot fuzzer identified a problem in the usbnet driver:

usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504 usbsubmiturb+0xed6/0x1880 drivers/usb/core/urb.c:504 Modules linked in: CPU: 0 PID: 754 Comm: kworker/0:2 Not tainted 6.4.0-rc7-syzkaller-00014-g692b7dc87ca6 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023 Workqueue: mld mldifcwork RIP: 0010:usbsubmiturb+0xed6/0x1880 drivers/usb/core/urb.c:504 Code: 7c 24 18 e8 2c b4 5b fb 48 8b 7c 24 18 e8 42 07 f0 fe 41 89 d8 44 89 e1 4c 89 ea 48 89 c6 48 c7 c7 a0 c9 fc 8a e8 5a 6f 23 fb <0f> 0b e9 58 f8 ff ff e8 fe b3 5b fb 48 81 c5 c0 05 00 00 e9 84 f7 RSP: 0018:ffffc9000463f568 EFLAGS: 00010086 RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 RDX: ffff88801eb28000 RSI: ffffffff814c03b7 RDI: 0000000000000001 RBP: ffff8881443b7190 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000003 R13: ffff88802a77cb18 R14: 0000000000000003 R15: ffff888018262500 FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000556a99c15a18 CR3: 0000000028c71000 CR4: 0000000000350ef0 Call Trace: <TASK> usbnetstartxmit+0xfe5/0x2190 drivers/net/usb/usbnet.c:1453 __netdevstartxmit include/linux/netdevice.h:4918 [inline] netdevstartxmit include/linux/netdevice.h:4932 [inline] xmitone net/core/dev.c:3578 [inline] devhardstartxmit+0x187/0x700 net/core/dev.c:3594 ...

This bug is caused by the fact that usbnet trusts the bulk endpoint addresses its probe routine receives in the driver_info structure, and it does not check to see that these endpoints actually exist and have the expected type and directions.

The fix is simply to add such a check.(CVE-2023-53548)

Database specific

{
    "severity": "Medium"
}

References

Affected packages

openEuler:20.03-LTS-SP4 / kernel

Package

Name: kernel
Purl: pkg:rpm/openEuler/kernel&distro=openEuler-20.03-LTS-SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.19.90-2603.3.0.0366.oe2003sp4

Ecosystem specific

{
    "aarch64": [
        "bpftool-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "bpftool-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-debugsource-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-devel-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-source-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-tools-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-tools-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "kernel-tools-devel-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "perf-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "perf-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "python2-perf-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "python2-perf-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "python3-perf-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm",
        "python3-perf-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.aarch64.rpm"
    ],
    "x86_64": [
        "bpftool-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "bpftool-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-debugsource-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-devel-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-source-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-tools-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-tools-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "kernel-tools-devel-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "perf-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "perf-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "python2-perf-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "python2-perf-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "python3-perf-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm",
        "python3-perf-debuginfo-4.19.90-2603.3.0.0366.oe2003sp4.x86_64.rpm"
    ],
    "src": [
        "kernel-4.19.90-2603.3.0.0366.oe2003sp4.src.rpm"
    ]
}

Database specific

source

"https://repo.openeuler.org/security/data/osv/OESA-2026-1762.json"