{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23188", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-01-13T15:37:45.985Z", "datePublished": "2026-02-14T16:27:16.869Z", "dateUpdated": "2026-05-11T22:02:01.716Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T22:02:01.716Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: r8152: fix resume reset deadlock\n\nrtl8152 can trigger device reset during reset which\npotentially can result in a deadlock:\n\n **** DPM device timeout after 10 seconds; 15 seconds until panic ****\n Call Trace:\n <TASK>\n schedule+0x483/0x1370\n schedule_preempt_disabled+0x15/0x30\n __mutex_lock_common+0x1fd/0x470\n __rtl8152_set_mac_address+0x80/0x1f0\n dev_set_mac_address+0x7f/0x150\n rtl8152_post_reset+0x72/0x150\n usb_reset_device+0x1d0/0x220\n rtl8152_resume+0x99/0xc0\n usb_resume_interface+0x3e/0xc0\n usb_resume_both+0x104/0x150\n usb_resume+0x22/0x110\n\nThe problem is that rtl8152 resume calls reset under\ntp->control mutex while reset basically re-enters rtl8152\nand attempts to acquire the same tp->control lock once\nagain.\n\nReset INACCESSIBLE device outside of tp->control mutex\nscope to avoid recursive mutex_lock() deadlock."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/usb/r8152.c"], "versions": [{"version": "4933b066fefbee4f1d2d708de53c4ab7f09026ad", "lessThan": "61c8091b7937f91f9bc0b7f6b578de270fe35dc7", "status": "affected", "versionType": "git"}, {"version": "4933b066fefbee4f1d2d708de53c4ab7f09026ad", "lessThan": "1b2efc593dca99d8e8e6f6d6c7ccd9a972679702", "status": "affected", "versionType": "git"}, {"version": "4933b066fefbee4f1d2d708de53c4ab7f09026ad", "lessThan": "6d06bc83a5ae8777a5f7a81c32dd75b8d9b2fe04", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/usb/r8152.c"], "versions": [{"version": "6.11", "status": "affected"}, {"version": "0", "lessThan": "6.11", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.70", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.10", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.11", "versionEndExcluding": "6.12.70"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.11", "versionEndExcluding": "6.18.10"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.11", "versionEndExcluding": "6.19"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/61c8091b7937f91f9bc0b7f6b578de270fe35dc7"}, {"url": "https://git.kernel.org/stable/c/1b2efc593dca99d8e8e6f6d6c7ccd9a972679702"}, {"url": "https://git.kernel.org/stable/c/6d06bc83a5ae8777a5f7a81c32dd75b8d9b2fe04"}], "title": "net: usb: r8152: fix resume reset deadlock", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "4CF24CBE-557F-47D8-9FF4-305CAB4A0A36", "versionEndExcluding": "6.12.70", "versionStartIncluding": "6.11", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "7156C23F-009E-4D05-838C-A2DA417B5B8D", "versionEndExcluding": "6.18.10", "versionStartIncluding": "6.13", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*", "matchCriteriaId": "17B67AA7-40D6-4AFA-8459-F200F3D7CFD1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*", "matchCriteriaId": "C47E4CC9-C826-4FA9-B014-7FE3D9B318B2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*", "matchCriteriaId": "F71D92C0-C023-48BD-B3B6-70B638EEE298", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*", "matchCriteriaId": "13580667-0A98-40CC-B29F-D12790B91BDB", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*", "matchCriteriaId": "CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*", "matchCriteriaId": "3EF854A1-ABB1-4E93-BE9A-44569EC76C0D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:*", "matchCriteriaId": "F5DC0CA6-F0AF-4DDF-A882-3DADB9A886A7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:*", "matchCriteriaId": "EB5B7DFC-C36B-45D8-922C-877569FDDF43", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: r8152: fix resume reset deadlock\n\nrtl8152 can trigger device reset during reset which\npotentially can result in a deadlock:\n\n **** DPM device timeout after 10 seconds; 15 seconds until panic ****\n Call Trace:\n <TASK>\n schedule+0x483/0x1370\n schedule_preempt_disabled+0x15/0x30\n __mutex_lock_common+0x1fd/0x470\n __rtl8152_set_mac_address+0x80/0x1f0\n dev_set_mac_address+0x7f/0x150\n rtl8152_post_reset+0x72/0x150\n usb_reset_device+0x1d0/0x220\n rtl8152_resume+0x99/0xc0\n usb_resume_interface+0x3e/0xc0\n usb_resume_both+0x104/0x150\n usb_resume+0x22/0x110\n\nThe problem is that rtl8152 resume calls reset under\ntp->control mutex while reset basically re-enters rtl8152\nand attempts to acquire the same tp->control lock once\nagain.\n\nReset INACCESSIBLE device outside of tp->control mutex\nscope to avoid recursive mutex_lock() deadlock."}, {"lang": "es", "value": "En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nnet: usb: r8152: corregir interbloqueo de reinicio de reanudaci\u00f3n\n\nrtl8152 puede desencadenar un reinicio del dispositivo durante el reinicio, lo que potencialmente puede resultar en un interbloqueo:\n\n** Tiempo de espera agotado del dispositivo DPM despu\u00e9s de 10 segundos; 15 segundos hasta el p\u00e1nico **\nRastreo de llamadas:\n\nschedule+0x483/0x1370\nschedule_preempt_disabled+0x15/0x30\n__mutex_lock_common+0x1fd/0x470\n__rtl8152_set_mac_address+0x80/0x1f0\ndev_set_mac_address+0x7f/0x150\nrtl8152_post_reset+0x72/0x150\nusb_reset_device+0x1d0/0x220\nrtl8152_resume+0x99/0xc0\nusb_resume_interface+0x3e/0xc0\nusb_resume_both+0x104/0x150\nusb_resume+0x22/0x110\n\nEl problema es que la reanudaci\u00f3n de rtl8152 llama a reset bajo el mutex tp-&gt;control mientras que reset b\u00e1sicamente reingresa a rtl8152 e intenta adquirir el mismo bloqueo tp-&gt;control una vez m\u00e1s.\n\nReiniciar el dispositivo INACCESIBLE fuera del \u00e1mbito del mutex tp-&gt;control para evitar el interbloqueo recursivo de mutex_lock()."}], "id": "CVE-2026-23188", "lastModified": "2026-03-19T18:04:07.167", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-02-14T17:15:56.600", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/1b2efc593dca99d8e8e6f6d6c7ccd9a972679702"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/61c8091b7937f91f9bc0b7f6b578de270fe35dc7"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/6d06bc83a5ae8777a5f7a81c32dd75b8d9b2fe04"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-667"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: net: usb: r8152: fix resume reset deadlock", "id": "2439894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439894"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.0", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "details": ["No description is available for this CVE."], "name": "CVE-2026-23188", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-02-14T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-23188\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-23188\nhttps://lore.kernel.org/linux-cve-announce/2026021432-CVE-2026-23188-c03c@gregkh/T"], "threat_severity": "Moderate"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[4933b066fefbee4f1d2d708de53c4ab7f09026ad,61c8091b7937f91f9bc0b7f6b578de270fe35dc7)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[4933b066fefbee4f1d2d708de53c4ab7f09026ad,1b2efc593dca99d8e8e6f6d6c7ccd9a972679702)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[4933b066fefbee4f1d2d708de53c4ab7f09026ad,6d06bc83a5ae8777a5f7a81c32dd75b8d9b2fe04)"}}], "product": "linux_kernel", "vendor": "linux"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "6.11"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.11)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.12.70,6.13.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.18.10,6.19.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[6.19,*]"}}], "product": "linux_kernel", "vendor": "linux"}], "analysis": {"en": {"generated_at": "2026-04-18T18:01:50.053068+00:00", "value": {"mitigation_remediation": ["Upgrade the Linux kernel to a release version that includes the rtl8152 deadlock fix, such as 6.19 rc9 or later", "If an immediate kernel upgrade is not possible, apply the patch from the kernel commit that introduced the deadlock fix or use a vendor\u2019s backport of the change", "Configure the system to either disable automatic resume for the rtl8152 network adapter or monitor system logs for DPM timeout warnings to pre\u2011emptively reboot if a deadlock occurs"], "summary": {"action": "Apply Kernel Update", "impact": "Kernel deadlock leading to potential system hangs or panic"}, "threat_synthesis": {"affected_systems": "Vulnerable kernels include Linux kernel version 6.19 release candidates 1 through 8. Any system running any of the rc8 variants or earlier pre\u2011release forms of that branch is impacted. The issue is resolved in later kernels beyond rc8, where the deadlock condition is eliminated.", "description_and_impact": "The vulnerability resides in the Linux kernel\u2019s rtl8152 USB driver, where the resume routine calls reset while holding the device control mutex, and the reset path re\u2011enters the driver attempting to acquire the same mutex again. This recursive locking can trigger a deadlock that manifests as a DPM timeout after ten seconds and a kernel panic after an additional fifteen seconds, disrupting system availability. The flaw is an instance of resource exhaustion that causes an uncontrolled lock contention leading to a system halt and is classified as CWE\u2011667, rather than affecting confidentiality or integrity.", "risk_and_exploitability": "With a CVSS score of 5.5 the weakness poses a moderate risk. Its EPSS score is below 1% and it is not listed in the CISA KEV catalog, implying a low probability of widespread exploitation. The likely attack vector requires local access that can trigger a USB resume event, such as removing and reconnecting an rtl8152 device. Once triggered, the deadlock may render the kernel unresponsive, enabling a denial\u2011of\u2011service scenario."}}}}, "created": "2026-02-16T09:43:46.931786+00:00", "updated": "2026-04-18T18:15:06.570106+00:00", "vendors": ["linux", "linux$PRODUCT$linux_kernel"]}