CVE-2024-56698
Published: Dec 28, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Fix looping of queued SG entries The dwc3_request->num_queued_sgs is decremented on completion. If a partially completed request is handled, then the dwc3_request->num_queued_sgs no longer reflects the total number of num_queued_sgs (it would be cleared). Correctly check the number of request SG entries remained to be prepare and queued. Failure to do this may cause null pointer dereference when accessing non-existent SG entry.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c96e6725db9d6a04ac1bee881e3034b636d9f71c - < 8ceb21d76426bbe7072cc3e43281e70c0d664cc7affected c96e6725db9d6a04ac1bee881e3034b636d9f71c - < 0247da93bf62d33304b7bf97850ebf2a86e06d28affected c96e6725db9d6a04ac1bee881e3034b636d9f71c - < c9e72352a10ae89a430449f7bfeb043e75c255d9affected c96e6725db9d6a04ac1bee881e3034b636d9f71c - < 1534f6f69393aac773465d80d31801b554352627affected c96e6725db9d6a04ac1bee881e3034b636d9f71c - < b7c3d0b59213ebeedff63d128728ce0b3d7a51ec+2 more versions |
Linux | Linux | affected 4.18unaffected 0 - < 4.18unaffected 5.10.231 - <= 5.10.*unaffected 5.15.174 - <= 5.15.*unaffected 6.1.120 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now