An issue was discovered in the Linux kernel before 5.16.10. The USB Gadget subsystem lacks certain validation of interface OS descriptor requests (ones with a large array index and ones associated with NULL function pointer retrieval). Memory corruption might occur. CREATE(Triage):(User=admin) CVE-2022-25258 (https://nvd.nist.gov/vuln/detail/CVE-2022-25258)
