Volerion logoVolerion
Volerion logoVolerion

Linux Kernel gs_usb Error Handling Improvement Vulnerability

Vulnerability

A vulnerability in the Linux kernel's gs_usb CAN driver has been addressed. The issue arose in the 'gs_usb_receive_bulk_callback' function, where a short read could lead to dereferencing a null value if the netdev had not been assigned. The vulnerability has been fixed by initializing the netdev as NULL in such cases, preventing the undefined value dereference. Additionally, the error value from failed USB request block (URB) resubmissions is now reported, enhancing the error handling of the function.

Impact

The vulnerability could lead to a null pointer dereference, causing a crash or undefined behavior in the kernel.

Reproduction

The vulnerability can be reproduced by triggering a short read in the gs_usb CAN driver before the netdev is assigned. This will cause the driver to dereference a null value, leading to a crash or undefined behavior.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Feb 14, 2026, 4:24 PM
Updated: Feb 14, 2026, 4:24 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.3
remediation
7.7
relevance
2.8
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.