PT-2024-11229 · Linux+1 · Linux Kernel+1

Published

2024-05-21

Updated

2025-06-18

CVE-2021-47220

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, which fixes a kernel panic issue that occurs when the system reboots. The issue arises when the dwc3 shutdown function is called, and the debugfs for dwc3 is removed before the gadget tries to deinit and remove debugfs for its endpoints, resulting in a NULL pointer dereference issue when calling debugfs lookup. The fix involves removing the whole dwc3 debugfs later than dwc3 drd exit. The vulnerability is related to the dwc3 gadget free endpoints function and the debugfs lookup function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-47220

OPENSUSE-SU-2024_2185-1

SUSE-SU-2024:1979-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2010-1

SUSE-SU-2024:2183-1

SUSE-SU-2024:2184-1

SUSE-SU-2024:2185-1

SUSE-SU-2025:01995-1

Affected Products

Linux Kernel

Suse

PT-2024-11229 · Linux+1 · Linux Kernel+1

CVE-2021-47220

Related Identifiers

Affected Products

References · 810