The vulnerability centers on the PVRUSB2 media driver in the Linux kernel. When pvr2_send_request_ex() successfully submits a write USB Request Block (URB) but fails to submit the corresponding read URB (e.g., due to –ENOMEM), the function returns immediately without waiting for the write URB to complete. Because the driver reuses the same URB structure, the next call to pvr2_send_request_ex() attempts to submit the still‑active write URB, triggering a ‘URB submitted while active’ warning in usb_submit_urb(). This indicates a resource leak: the write URB is never cleaned up properly, constituting a classic memory/resource leak consistent with CWE‑401 and a resource‑management flaw consistent with CWE‑911.

The unpatched code exists in any Linux kernel that includes the PVRUSB2 driver before the commit that fixes pvr2_send_request_ex. Since kernel distributions typically include this driver, any distribution that has not yet applied the kernel patches containing the commit may be affected. Official damage reports are not tied to a specific kernel version number in the supplied data.

The CVSS score of 5.5 classifies this issue as medium severity. The EPSS score of 0.00024 indicates an extremely low likelihood that this vulnerability will be exploited in the wild. The vulnerability is not listed in the CISA KEV catalog, suggesting no documented exploitation. The flaw is local to the host, requiring direct access to the affected USB device or the ability to load the kernel driver, and is therefore unlikely to be exploited remotely beyond that context. Nonetheless, repeated failures can generate persistent kernel warnings and may contribute to resource exhaustion over prolonged use.