CVE-2026-23015

Summary

In the Linux kernel, the following vulnerability has been resolved:

gpio: mpsse: fix reference leak in gpio_mpsse_probe() error paths

The reference obtained by calling usb_get_dev() is not released in the gpio_mpsse_probe() error paths. Fix that by using device managed helper functions. Also remove the usb_put_dev() call in the disconnect function since now it will be released automatically.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc46a74ff05c0ac76ba11ef21c930c3b447abf31a < 7ea26e6dcabc270433b6ded2a1aee85b215d1b28affected
LinuxLinuxc46a74ff05c0ac76ba11ef21c930c3b447abf31a < 1e876e5a0875e71e34148c9feb2eedd3bf6b2b43affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.18.6 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References