CVE-2026-43343 PUBLISHED

usb: gadget: f_subset: Fix unbalanced refcnt in geth_free

Assigner: Linux
Reserved: 01.05.2026 Published: 08.05.2026 Updated: 08.05.2026

In the Linux kernel, the following vulnerability has been resolved:

usb: gadget: f_subset: Fix unbalanced refcnt in geth_free

geth_alloc() increments the reference count, but geth_free() fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function.

Decrement the reference count in geth_free() to ensure proper cleanup.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to a932b171554714b1bca313b853c7aa9f2930f9aa (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to d7d702407b61e96286a15b6e715572f541a8d41c (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to 3f5bfc550a40d7493b1cf09540ed6b412b3b82be (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to 75776a055b656873319c3830fed471daef3ceb23 (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to cc8ec610cd14c093a19371691a7ce1ee5421e829 (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to 3d436670b47415da042452618fb5d8e317ab095f (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to 23e4851ce348a329d974e84e828155dda9f52122 (excl.)
  • affected from 02832e56f88a981474ee4c7c141f46fc1b4454f4 to caa27923aacd8a5869207842f2ab1657c6c0c7bc (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 3.11 is affected
  • unaffected from 0 to 3.11 (excl.)
  • unaffected from 5.10.253 to 5.10.* (incl.)
  • unaffected from 5.15.203 to 5.15.* (incl.)
  • unaffected from 6.1.168 to 6.1.* (incl.)
  • unaffected from 6.6.134 to 6.6.* (incl.)
  • unaffected from 6.12.81 to 6.12.* (incl.)
  • unaffected from 6.18.22 to 6.18.* (incl.)
  • unaffected from 6.19.12 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References