Linux Kernel USB Drivers Buffer Management Vulnerability
CVE-2026-46103

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-46103?

This vulnerability involves USB drivers in the Linux kernel, where device-managed resources were not properly tied to the USB interface, leading to potential memory leaks. The improper management means that when drivers are unbound without physical disconnection of the devices, the resources remain allocated, causing inefficient memory usage. To mitigate this, improvements have been made to ensure the control message buffer is released appropriately upon driver unbinding, thereby enhancing resource management and preventing leaks in various scenarios like probe deferral or configuration changes.

Affected Version(s)

Linux 9f2d3eae88d26c29d96e42983b755940d9169cd9 < 4b7d07747400cfd7eff1ba7b8b5a7c8d5a58f705

Linux 9f2d3eae88d26c29d96e42983b755940d9169cd9 < 10b7b676b78a7bd888d19729b459aad7fc1f428b

Linux 9f2d3eae88d26c29d96e42983b755940d9169cd9

References

https://git.kernel.org/stable/c/4b7d07747400cfd7eff1ba7b8...

https://git.kernel.org/stable/c/10b7b676b78a7bd888d19729b...

https://git.kernel.org/stable/c/c524c124e3094d2de12235a51...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46103 Data

JSON