U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. Vulnerabilities

CVE-2024-35822 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: usb: udc: remove warning when queue disabled ep It is possible trigger below warning message from mass storage function, WARNING: CPU: 6 PID: 3839 at drivers/usb/gadget/udc/core.c:294 usb_ep_queue+0x7c/0x104 pc : usb_ep_queue+0x7c/0x104 lr : fsg_main_thread+0x494/0x1b3c Root cause is mass storage function try to queue request from main thread, but other thread may already disable ep when function disable. As there is no function failure in the driver, in order to avoid effort to fix warning, change WARN_ON_ONCE() in usb_ep_queue() to pr_debug().


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL Source(s) Tag(s)
https://git.kernel.org/stable/c/2a587a035214fa1b5ef598aea0b81848c5b72e5e CVE, kernel.org Patch 
https://git.kernel.org/stable/c/2b002c308e184feeaeb72987bca3f1b11e5f70b8 CVE, kernel.org Patch 
https://git.kernel.org/stable/c/30511676eb54d480d014352bf784f02577a10252 CVE, kernel.org Patch 
https://git.kernel.org/stable/c/36177c2595df12225b95ce74eb1ac77b43d5a58c CVE, kernel.org Patch 
https://git.kernel.org/stable/c/3e944ddc17c042945d983e006df7860687a8849a CVE, kernel.org Patch 
https://git.kernel.org/stable/c/68d951880d0c52c7f13dcefb5501b69b8605ce8c CVE, kernel.org Patch 
https://git.kernel.org/stable/c/99731076722eb7ed26b0c87c879da7bb71d24290 CVE, kernel.org Patch 
https://git.kernel.org/stable/c/df5cbb908f1687e8ab97e222a16b7890d5501acf CVE, kernel.org Patch 
https://git.kernel.org/stable/c/f74c5e0b54b02706d9a862ac6cddade30ac86bcf CVE, kernel.org Patch 
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html CVE Third Party Advisory 
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html CVE Third Party Advisory 

Weakness Enumeration

CWE-ID CWE Name Source
NVD-CWE-noinfo Insufficient Information cwe source acceptance level NIST  

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

7 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2024-35822
NVD Published Date:
05/17/2024
NVD Last Modified:
12/17/2025
Source:
kernel.org