CVE-2026-46103 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

can: ucan: fix devres lifetime

USB drivers bind to USB interfaces and any device managed resources
should have their lifetime tied to the interface rather than parent USB
device. This avoids issues like memory leaks when drivers are unbound
without their devices being physically disconnected (e.g. on probe
deferral or configuration changes).

Fix the control message buffer lifetime so that it is released on driver
unbind.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00161.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< a90f0815aaa9c629ac4750e7c71c357dd7f231d7
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< cb2e41e87a2893345859440017e7178bf7a4c70d
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< 3df5b9110ac08f67ccfe382fc172bfee95688eec
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< 4b7d07747400cfd7eff1ba7b8b5a7c8d5a58f705
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< 10b7b676b78a7bd888d19729b459aad7fc1f428b
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< c524c124e3094d2de12235a513854c03d06a2b58
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< c0d3ccc6929e4509076df8f30a4fb1dc5018b0ae
`9f2d3eae88d26c29d96e42983b755940d9169cd9`	affected	< fed4626501c871890da287bec62a96e52da1af89

Linux

affected

Version	Status	Constraints
`4.19`	affected	—
`0`	unaffected	< 4.19
`5.10.259`	unaffected	≤ 5.10.*
`5.15.210`	unaffected	≤ 5.15.*
`6.1.175`	unaffected	≤ 6.1.*
`6.6.140`	unaffected	≤ 6.6.*
`6.12.86`	unaffected	≤ 6.12.*
`6.18.27`	unaffected	≤ 6.18.*
`7.0.4`	unaffected	≤ 7.0.*
`7.1`	unaffected	≤ *

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/10b7b676b78a7bd888d19729b459aad7fc1f428b
https://git.kernel.org/stable/c/3df5b9110ac08f67ccfe382fc172bfee95688eec
https://git.kernel.org/stable/c/4b7d07747400cfd7eff1ba7b8b5a7c8d5a58f705
https://git.kernel.org/stable/c/a90f0815aaa9c629ac4750e7c71c357dd7f231d7
https://git.kernel.org/stable/c/c0d3ccc6929e4509076df8f30a4fb1dc5018b0ae
https://git.kernel.org/stable/c/c524c124e3094d2de12235a513854c03d06a2b58
https://git.kernel.org/stable/c/cb2e41e87a2893345859440017e7178bf7a4c70d
https://git.kernel.org/stable/c/fed4626501c871890da287bec62a96e52da1af89
https://lore.kernel.org/linux-cve-announce/2026052705-CVE-2026-46103-9028@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-46103
https://www.cve.org/CVERecord?id=CVE-2026-46103

History

Fri, 19 Jun 2026 12:45:00 +0000

Type	Values Removed	Values Added
References		https://git.kernel.org/stable/c/a90f0815aaa9c629ac4750e7c71c357dd7f231d7 https://git.kernel.org/stable/c/cb2e41e87a2893345859440017e7178bf7a4c70d

Mon, 01 Jun 2026 17:00:00 +0000

Type	Values Removed	Values Added
References		https://git.kernel.org/stable/c/3df5b9110ac08f67ccfe382fc172bfee95688eec

Thu, 28 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-772
References		https://lore.kernel.org/linux-cve-announce/2026052705-CVE-2026-46103-9028@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-46103 https://www.cve.org/CVERecord?id=CVE-2026-46103
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Low`

Wed, 27 May 2026 18:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-229

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers are unbound without their devices being physically disconnected (e.g. on probe deferral or configuration changes). Fix the control message buffer lifetime so that it is released on driver unbind.
Title		can: ucan: fix devres lifetime
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/10b7b676b78a7bd888d19729b459aad7fc1f428b https://git.kernel.org/stable/c/4b7d07747400cfd7eff1ba7b8b5a7c8d5a58f705 https://git.kernel.org/stable/c/c0d3ccc6929e4509076df8f30a4fb1dc5018b0ae https://git.kernel.org/stable/c/c524c124e3094d2de12235a513854c03d06a2b58 https://git.kernel.org/stable/c/fed4626501c871890da287bec62a96e52da1af89

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-27T12:59:11.533Z

Updated: 2026-06-19T11:59:29.306Z

Reserved: 2026-05-13T15:03:33.097Z

Link: CVE-2026-46103

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:32.457

Modified: 2026-06-17T10:53:04.307

Link: CVE-2026-46103

Redhat

Severity : Low

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-46103 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-28T02:45:05Z

Weaknesses

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object