Linux Distros Unpatched Vulnerability : CVE-2026-43422

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: legacy: ncm: Fix NPE in gncmbind Commit 56a512a9b410 usb: gadget: fncm: align netdevice...

SUSE CVE-2026-43422

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2026-43422

A flaw was found in the Linux kernel's USB legacy NCM Network Control Model driver. This vulnerability occurs due to a NULL pointer dereference in the gncmbind function, where the driver attempts to access a network device netdevice before it has been fully initialized. An attacker could...

CVE-2026-43422

In the Linux kernel, the following vulnerability has been resolved: usb: legacy: ncm: Fix NPE in gncmbind Commit 56a512a9b410 "usb: gadget: fncm: align netdevice lifecycle with bind/unbind" deferred the allocation of the netdevice. This change leads to a NULL pointer dereference in the legacy NCM...

UBUNTU-CVE-2026-43422

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2026-43422

The CVE-2026-43422 entry concerns the Linux kernel USB legacy NCM driver. The vulnerability stems from deferred net_device allocation in gncm_bind, where a NULL pointer dereference could occur when accessing the net_device before it is fully instantiated. The fix, described in the connected repor...

CVE-2026-43422

...