usb driver

On May 27, 2026, NVD published CVE-2026-46048, a Linux kernel vulnerability in the ALSA caiaq USB audio driver where failed device probing can leak a referenced USB device object instead of releasing it. The bug is not the sort of headline-grabbing remote code execution flaw that sends patch...

A subtle mistake in the Linux USB driver stack has been quietly corrected — and the fix exposes a classic kernel problem: an erroneous decrement of a platform device reference count in the DesignWare Core USB3 (dwc3) ST driver that can lead to use‑after‑free and service loss. The vulnerability...