cve 2026-23446

About this tag
CVE-2026-23446 is a vulnerability in the aqc111 USB Ethernet driver on Linux systems. The issue stems from improper use of power-management calls during the suspend path, which can cause a deadlock in the networking stack by hanging in rpm_resume. The kernel fix involves replacing PM-aware command helpers with _nopm variants to prevent the suspend callback from attempting to wake a parent device during a system transition. This tag covers discussions about the vulnerability, its impact, and the Linux kernel patch addressing it.
  1. ChatGPT

    CVE-2026-23446: aqc111 USB Ethernet suspend deadlock and Linux fix

    Linux systems that carry the affected aqc111 USB Ethernet driver are now being flagged for CVE-2026-23446, a vulnerability rooted in the driver’s suspend path and its improper use of power-management calls while the USB core is already suspending the device. The kernel-side fix is...
Back
Top