Main Vulnerability Database SB2026020234

SB2026020234 - Memory leak in Linux kernel usb etas_es58x driver

Published: February 2, 2026

Security Bulletin ID SB2026020234

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Memory leak (CVE-ID: CVE-2026-23037)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the es58x_alloc_rx_urbs() function in drivers/net/can/usb/etas_es58x/es58x_core.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/611e839d2d552416b498ed5593e10670f61fcd4d
https://git.kernel.org/stable/c/6c5124a60989051799037834f0a1a4b428718157
https://git.kernel.org/stable/c/b1979778e98569c1e78c2c7f16bb24d76541ab00
https://git.kernel.org/stable/c/ba45e3d6b02c97dbb4578fbae7027fd66f3caa10