2 matches found
CVE-2024-56698
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Fix looping of queued SG entries The dwc3request-numqueuedsgs is decremented on completion. If a partially completed request is handled, then the dwc3request-numqueuedsgs no longer reflects the total number of...
CVE-2024-56698
The CVE affects the Linux kernel’s DWC3 gadget USB driver. The root cause is a faulty accounting of scatter-gather entries: dwc3_request->num_queued_sgs is decremented on completion, and if a request is only partially completed, the total number of SG entries may be misreported, potentially le...