retired/CVE-2021-46986


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: usb: dwc3: gadget: Free gadget structure only after freeing endpoints
References:
Notes:
 carnil> Introduced in e81a7018d93a ("usb: dwc3: allocate gadget structure
 carnil> dynamically"). Vulnerable versions: 5.10-rc1.
Bugs:
upstream: released (5.13-rc2) [bb9c74a5bd1462499fe5ccb1e3c5ac40dcfa9139]
6.7-upstream-stable: N/A "Fixed before branching point"
6.6-upstream-stable: N/A "Fixed before branching point"
6.1-upstream-stable: N/A "Fixed before branching point"
5.10-upstream-stable: released (5.10.38) [1ea775021282d90e1d08d696b7ab54aa75d688e5]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (5.10.38-1)
6.1-bookworm-security: N/A "Fixed before branching point"
5.10-bullseye-security: N/A "Fixed before branching point"
4.19-buster-security: N/A "Vulnerable code not present"