CVE-2026-43342 PUBLISHED

usb: gadget: f_rndis: Protect RNDIS options with mutex

Assigner: Linux
Reserved: 01.05.2026 Published: 08.05.2026 Updated: 08.05.2026

In the Linux kernel, the following vulnerability has been resolved:

usb: gadget: f_rndis: Protect RNDIS options with mutex

The class/subclass/protocol options are suspectible to race conditions as they can be accessed concurrently through configfs.

Use existing mutex to protect these options. This issue was identified during code inspection.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to 0a75d97c53477a59c0aa1c65f69038c719f9c5b8 (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to c1b3d5b0acb194efe20fc5864ee03439fa7bd45c (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to 65b7dbf80a1627667c241fff7c1c224f3118014f (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to cb5316b37288ab8791584e32f114c4f41ad45b67 (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to 7d8fa3b8783ab95a46e20d97fbeeede719b2efda (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to 446f1842cda929c40d4697722bfdcfb334bc9692 (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to 209decd3f7901df9842b83f2540dc8685e344a07 (excl.)
  • affected from 73517cf49bd449122b615d2b7a6bb835f02252e5 to 8d8c68b1fc06ece60cf43e1306ff0f4ac121547e (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 4.14 is affected
  • unaffected from 0 to 4.14 (excl.)
  • unaffected from 5.10.253 to 5.10.* (incl.)
  • unaffected from 5.15.203 to 5.15.* (incl.)
  • unaffected from 6.1.168 to 6.1.* (incl.)
  • unaffected from 6.6.134 to 6.6.* (incl.)
  • unaffected from 6.12.81 to 6.12.* (incl.)
  • unaffected from 6.18.22 to 6.18.* (incl.)
  • unaffected from 6.19.12 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References