CVE-2026-31755

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference occurs in the cdns3 gadget ep queue() function when a gadget endpoint is disabled or not yet configured. In these states, the ep->desc pointer can be NULL, leading to a kernel crash when the function is called.

Recommendations Implement a check to return -ESHUTDOWN if ep->desc is NULL to ensure unconfigured endpoints are handled correctly. At the moment, there is no information about a newer version that contains a fix for this vulnerability.