active/CVE-2024-26749


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: usb: cdns3: fixed memory use after free at cdns3_gadget_ep_disable()
References:
Notes:
 carnil> Introduced in 7733f6c32e36 ("usb: cdns3: Add Cadence USB3 DRD Driver").
 carnil> Vulnerable versions: 5.4-rc1.
Bugs:
upstream: released (6.8-rc6) [cd45f99034b0c8c9cb346dd0d6407a95ca3d36f6]
6.7-upstream-stable: released (6.7.7) [9a07244f614bc417de527b799da779dcae780b5d]
6.6-upstream-stable: released (6.6.19) [29e42e1578a10c611b3f1a38f3229b2d664b5d16]
6.1-upstream-stable: released (6.1.80) [2134e9906e17b1e5284300fab547869ebacfd7d9]
5.10-upstream-stable: released (5.10.211) [b40328eea93c75a5645891408010141a0159f643]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.7.7-1)
6.1-bookworm-security: released (6.1.82-1)
5.10-bullseye-security: needed
4.19-buster-security: N/A "Vulnerable code not present"