U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2024-46675

Change History

New CVE Received by NIST 9/13/2024 2:15:12 AM

Action Type Old Value New Value
Added Description

								
							
							
						
In the Linux kernel, the following vulnerability has been resolved:

usb: dwc3: core: Prevent USB core invalid event buffer address access

This commit addresses an issue where the USB core could access an
invalid event buffer address during runtime suspend, potentially causing
SMMU faults and other memory issues in Exynos platforms. The problem
arises from the following sequence.
        1. In dwc3_gadget_suspend, there is a chance of a timeout when
        moving the USB core to the halt state after clearing the
        run/stop bit by software.
        2. In dwc3_core_exit, the event buffer is cleared regardless of
        the USB core's status, which may lead to an SMMU faults and
        other memory issues. if the USB core tries to access the event
        buffer address.

To prevent this hardware quirk on Exynos platforms, this commit ensures
that the event buffer address is not cleared by software  when the USB
core is active during runtime suspend by checking its status before
clearing the buffer address.
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/111277b881def3153335acfe0d1f43e6cd83ac93 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/14e497183df28c006603cc67fd3797a537eef7b9 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/2189fd13c577d7881f94affc09c950a795064c4b [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/7bb11a75dd4d3612378b90e2a4aa49bdccea28ab [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/b72da4d89b97da71e056cc4d1429b2bc426a9c2f [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/d2afc2bffec77316b90d530b07695e3f534df914 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/e23f6ad8d110bf632f7471482e10b43dc174fb72 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/eca3f543f817da87c00d1a5697b473efb548204f [No types assigned]