Linux kernel usbtmc driver timeout abuse: potential DoS
CVE-2026-43429 Published on May 8, 2026
USB: usbtmc: Use usb_bulk_msg_killable() with user-specified timeouts
In the Linux kernel, the following vulnerability has been resolved:
USB: usbtmc: Use usb_bulk_msg_killable() with user-specified timeouts
The usbtmc driver accepts timeout values specified by the user in an
ioctl command, and uses these timeouts for some usb_bulk_msg() calls.
Since the user can specify arbitrarily long timeouts and
usb_bulk_msg() uses unkillable waits, call usb_bulk_msg_killable()
instead to avoid the possibility of the user hanging a kernel thread
indefinitely.
Products Associated with CVE-2026-43429
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 048c6d88a0214757926f264823829e79154fcd4f and below e14a0dcdf468c3ad616bb06696c7c64c36e736d8 is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below 7fa72c369c23c27d1f64883c1e276af950557fb1 is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below 72c0a063489be183cfb99e7050aaef503bdb6449 is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below 39bd4097292fd8564cf2cfba9356f8ab11e38d12 is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below 0535f84cb94c9d8bcba0a2a5b3fac81b7d97235d is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below 6cb7dc91f057dd8ce44f6caa2995d8e22784ed0a is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below d4f1c45bdff3f393f9ab7e76795901c442b9eb76 is affected.
- Version 048c6d88a0214757926f264823829e79154fcd4f and below 7784caa413a89487dd14dd5c41db8753483b2acb is affected.
- Version 4.19 is affected.
- Before 4.19 is unaffected.
- Version 5.10.253, <= 5.10.* is unaffected.
- Version 5.15.203, <= 5.15.* is unaffected.
- Version 6.1.167, <= 6.1.* is unaffected.
- Version 6.6.130, <= 6.6.* is unaffected.
- Version 6.12.78, <= 6.12.* is unaffected.
- Version 6.18.19, <= 6.18.* is unaffected.
- Version 6.19.9, <= 6.19.* is unaffected.
- Version 7.0, <= * is unaffected.