Chris Wulff

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** The issue is related to the Linux kernel's USB gadget core, where a null pointer panic can occur if the gadget doesn't properly set up the endpoint for the current speed, or the gadget descriptors are malformed. This may cause a hard-to-find bug during development of new gadgets. No current gadget driver is known to have this problem. **Recommendations** For versions prior to 6.6.50, update to version 6.6.50 or later to resolve the issue. As a temporary workaround, consider restricting the use of the vulnerable USB gadget core until a patch is available. Avoid using malformed gadget descriptors to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition vulnerability has been resolved in the Linux kernel, specifically in the usb: gadget: u audio component. The issue occurred due to the use of controls after free during gadget unbind. To fix this, the control IDs are now held onto instead of pointers, as these are correctly handled with locks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.