CVE-2026-43255

MEDIUM EPSS 2.8%
Published May 6, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix WARNING in usb_tx_block The function usb_tx_block() submits cardp->tx_urb without ensuring that any previous transmission on this URB has completed. If a second call occurs while the URB is still active (e.g. during rapid firmware loading), usb_submit_urb() detects the active state and triggers a warning: 'URB submitted while active'. Fix this by enforcing serialization: call usb_kill_urb() before submitting the new request. This ensures the URB is idle and safe to reuse.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥2.6.22  –  <5.10.252
linuxlinux_kernel*≥5.11  –  <5.15.202
linuxlinux_kernel*≥5.16  –  <6.1.165
linuxlinux_kernel*≥6.2  –  <6.6.128
linuxlinux_kernel*≥6.7  –  <6.12.75
linuxlinux_kernel*≥6.13  –  <6.18.16
linuxlinux_kernel*≥6.19  –  <6.19.6

References 8

  • git.kernel.org https://git.kernel.org/stable/c/2902a9b4415a6bafc9b1e5dd360f065d757a0bb7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3308c7504e093b22e91a4468470309cee2e26b83
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/498525d8358d6d20918787e59736d5b6a021e9fd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5bfb25495e391a1be0db94b15715174fa06b93a1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/948a39c95d0f8d73722910f8cdb7b6e3e9206232
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b82073564373e68c6ae3a96039fae14cd002a496
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d66676e6ca96bf8680f869a9bd6573b26c634622
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc188b44547dea4e7350833171982a6312befde9
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/2902a9b4415a6bafc9b1e5dd360f065d757a0bb7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3308c7504e093b22e91a4468470309cee2e26b83
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/498525d8358d6d20918787e59736d5b6a021e9fd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5bfb25495e391a1be0db94b15715174fa06b93a1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/948a39c95d0f8d73722910f8cdb7b6e3e9206232
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b82073564373e68c6ae3a96039fae14cd002a496
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d66676e6ca96bf8680f869a9bd6573b26c634622
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc188b44547dea4e7350833171982a6312befde9
    Patch