VYPR
Unrated severityNVD Advisory· Published Dec 28, 2024· Updated Nov 3, 2025

usb: dwc3: gadget: Fix looping of queued SG entries

CVE-2024-56698

Description

In the Linux kernel, the following vulnerability has been resolved:

usb: dwc3: gadget: Fix looping of queued SG entries

The dwc3_request->num_queued_sgs is decremented on completion. If a partially completed request is handled, then the dwc3_request->num_queued_sgs no longer reflects the total number of num_queued_sgs (it would be cleared).

Correctly check the number of request SG entries remained to be prepare and queued. Failure to do this may cause null pointer dereference when accessing non-existent SG entry.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

106

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.