{"id":"CVE-2021-46930","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: mtu3: fix list_head check warning\n\nThis is caused by uninitialization of list_head.\n\nBUG: KASAN: use-after-free in __list_del_entry_valid+0x34/0xe4\n\nCall trace:\ndump_backtrace+0x0/0x298\nshow_stack+0x24/0x34\ndump_stack+0x130/0x1a8\nprint_address_description+0x88/0x56c\n__kasan_report+0x1b8/0x2a0\nkasan_report+0x14/0x20\n__asan_load8+0x9c/0xa0\n__list_del_entry_valid+0x34/0xe4\nmtu3_req_complete+0x4c/0x300 [mtu3]\nmtu3_gadget_stop+0x168/0x448 [mtu3]\nusb_gadget_unregister_driver+0x204/0x3a0\nunregister_gadget_item+0x44/0xa4","modified":"2026-03-13T05:19:20.846116Z","published":"2024-02-27T10:15:07.637Z","related":["SUSE-SU-2024:1320-1","SUSE-SU-2024:1321-1","SUSE-SU-2024:1454-1","SUSE-SU-2024:1465-1","SUSE-SU-2024:1466-1","SUSE-SU-2024:1480-1","SUSE-SU-2024:1489-1","SUSE-SU-2024:1490-1"],"references":[{"type":"FIX","url":"https://git.kernel.org/stable/c/249ddfbe00570d6dc76208e88017937d4d374c79"},{"type":"FIX","url":"https://git.kernel.org/stable/c/3b6efe0b7ba03cc2acf0694b46d6ff33c5b4c295"},{"type":"FIX","url":"https://git.kernel.org/stable/c/585e2b244dda7ea733274e4b8fa27853d625d3bf"},{"type":"FIX","url":"https://git.kernel.org/stable/c/8c313e3bfd9adae8d5c4ba1cc696dcbc86fbf9bf"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"5.2.0"},{"fixed":"5.4.170"}]},{"events":[{"introduced":"5.5.0"},{"fixed":"5.10.90"}]},{"events":[{"introduced":"5.11.0"},{"fixed":"5.15.13"}]}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46930.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}