{"id":"CVE-2026-43342","summary":"usb: gadget: f_rndis: Protect RNDIS options with mutex","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_rndis: Protect RNDIS options with mutex\n\nThe class/subclass/protocol options are suspectible to race conditions\nas they can be accessed concurrently through configfs.\n\nUse existing mutex to protect these options. This issue was identified\nduring code inspection.","modified":"2026-07-15T01:49:12.548330553Z","published":"2026-05-08T13:37:19.920Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43342.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0a75d97c53477a59c0aa1c65f69038c719f9c5b8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/209decd3f7901df9842b83f2540dc8685e344a07"},{"type":"WEB","url":"https://git.kernel.org/stable/c/446f1842cda929c40d4697722bfdcfb334bc9692"},{"type":"WEB","url":"https://git.kernel.org/stable/c/65b7dbf80a1627667c241fff7c1c224f3118014f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7d8fa3b8783ab95a46e20d97fbeeede719b2efda"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8d8c68b1fc06ece60cf43e1306ff0f4ac121547e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c1b3d5b0acb194efe20fc5864ee03439fa7bd45c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cb5316b37288ab8791584e32f114c4f41ad45b67"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43342.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-43342"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"73517cf49bd449122b615d2b7a6bb835f02252e5"},{"fixed":"0a75d97c53477a59c0aa1c65f69038c719f9c5b8"},{"fixed":"c1b3d5b0acb194efe20fc5864ee03439fa7bd45c"},{"fixed":"65b7dbf80a1627667c241fff7c1c224f3118014f"},{"fixed":"cb5316b37288ab8791584e32f114c4f41ad45b67"},{"fixed":"7d8fa3b8783ab95a46e20d97fbeeede719b2efda"},{"fixed":"446f1842cda929c40d4697722bfdcfb334bc9692"},{"fixed":"209decd3f7901df9842b83f2540dc8685e344a07"},{"fixed":"8d8c68b1fc06ece60cf43e1306ff0f4ac121547e"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43342.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.14.0"},{"fixed":"5.10.253"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.203"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.168"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.134"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.81"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.22"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.12"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43342.json"}}],"schema_version":"1.7.5"}