CVE-2026-23290
Description
In the Linux kernel, the following vulnerability has been resolved:
net: usb: pegasus: validate USB endpoints
The pegasus driver should validate that the device it is probing has the proper number and types of USB endpoints it is expecting before it binds to it. If a malicious device were to not have the same urbs the driver will crash later on when it blindly accesses these endpoints.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
The Linux kernel's pegasus USB driver lacks endpoint validation, allowing malicious devices to cause a crash by presenting unexpected USB endpoints.
Root
Cause
The Linux kernel's pegasus driver for USB Ethernet adapters fails to validate the number and types of USB endpoints present on the device during probe. The driver assumes a specific endpoint layout and will blindly access these endpoints, leading to a crash if a device does not conform to expectations [1][2].
Exploitation
A physically present attacker can connect a malicious USB device that presents incorrect or missing endpoints to the kernel. No authentication or special privileges are needed beyond physical USB access. The driver will accept the device and subsequently dereference invalid pointers or access out-of-bounds endpoint structures [3].
Impact
Successful exploitation results in a kernel crash (denial of service). The vulnerability does not appear to allow arbitrary code execution or privilege escalation based on current information [4].
Mitigation
The fix is included in Linux kernel stable updates. Users should apply the latest kernel updates from their distribution. No workaround is available other than ensuring only trusted USB devices are connected.
AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- git.kernel.org/stable/c/11de1d3ae5565ed22ef1f89d73d8f2d00322c699nvd
- git.kernel.org/stable/c/43d7c4114b1ec14f41f09306525d3b9382286fc1nvd
- git.kernel.org/stable/c/7f8505c7ce3f186ef9d2495f3c0bd6ad6fce999fnvd
- git.kernel.org/stable/c/95556b4e879711693c9865ba0938c148f62d5ea4nvd
- git.kernel.org/stable/c/af7369ae572f53cb701731a4289ec3b3889bc501nvd
- git.kernel.org/stable/c/c3f1672eaea68c5cb6e1ec081cdb92045453218fnvd
- git.kernel.org/stable/c/d5d9086211877361f1bda44a0aec538ddb04042anvd
- git.kernel.org/stable/c/ee31ec8cf1eafeefa85ef934ba688d27f88bf0e2nvd
News mentions
0No linked articles in our index yet.