What is GHSA-pfm7-36qc-84v9?

GHSA-pfm7-36qc-84v9 is a security advisory published by GitHub Security Advisories with Medium severity. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis:...

Which CVE IDs does GHSA-pfm7-36qc-84v9 cover?

GHSA-pfm7-36qc-84v9 covers the following CVE IDs: CVE-2026-43342. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-pfm7-36qc-84v9?

GHSA-pfm7-36qc-84v9 has a CVSS v3 base score of 4.7, published by GitHub Security Advisories.

GHSA-pfm7-36qc-84v9MediumCVSS 4.7

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis:...

Vendor

GitHub Security Advisories

Published

May 8, 2026

Last Modified

May 18, 2026

🔗 CVE IDs covered (1)

CVE-2026-43342 →

📋 Description

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Protect RNDIS options with mutex The class/subclass/protocol options are suspectible to race conditions as they can be accessed concurrently through configfs. Use existing mutex to protect these options. This issue was identified during code inspection.

🔗 References (10)

https://nvd.nist.gov/vuln/detail/CVE-2026-43342
https://git.kernel.org/stable/c/0a75d97c53477a59c0aa1c65f69038c719f9c5b8
https://git.kernel.org/stable/c/209decd3f7901df9842b83f2540dc8685e344a07
https://git.kernel.org/stable/c/446f1842cda929c40d4697722bfdcfb334bc9692
https://git.kernel.org/stable/c/65b7dbf80a1627667c241fff7c1c224f3118014f
https://git.kernel.org/stable/c/7d8fa3b8783ab95a46e20d97fbeeede719b2efda
https://git.kernel.org/stable/c/8d8c68b1fc06ece60cf43e1306ff0f4ac121547e
https://git.kernel.org/stable/c/c1b3d5b0acb194efe20fc5864ee03439fa7bd45c
https://git.kernel.org/stable/c/cb5316b37288ab8791584e32f114c4f41ad45b67
https://github.com/advisories/GHSA-pfm7-36qc-84v9