Driver Issue in Linux Kernel Affecting gs_usb
CVE-2025-68307
What is CVE-2025-68307?
A vulnerability in the Linux kernel's gs_usb driver has been identified that affects the handling of failed transmissions of URBs (USB Request Blocks). This issue can result in a buildup of failed transmissions, effectively reducing the number of available URBs and leading to diminished performance. In severe cases, it may even halt all transmission processes. Proper management and cleanup of failed bulk URB transfers are essential to ensure network device statistics are updated, resources like echo_sbk are marked as free, and that the driver's context is released accordingly. Addressing this vulnerability requires careful attention to the handling mechanisms for sending and managing URBs within the gs_usb driver.
Affected Version(s)
Linux d08e973a77d128b25e01a08c34d89593fdf222da
Linux d08e973a77d128b25e01a08c34d89593fdf222da < 1a588c40a422a3663a52f1c5535e8fb6b044167d
Linux d08e973a77d128b25e01a08c34d89593fdf222da < 4a82072e451eacf24fc66a445e906f5095d215db