USB: gadget: validate interface OS descriptor requests

stable inclusion
from linux-4.19.230
commit e5eb8d19aee115d8fb354d1eff1b8df700467164
CVE: CVE-2022-25258

--------------------------------

commit 75e5b484 upstream.

Stall the control endpoint in case provided index exceeds array size of
MAX_CONFIG_INTERFACES or when the retrieved function pointer is null.

Signed-off-by: Szymon Heidrich <szymon.heidrich@gmail.com>
Cc: stable@kernel.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Yang Yingliang <yangyingliang@huawei.com>
Reviewed-by: Wang Weiyang <wangweiyang2@huawei.com>
Signed-off-by: Yang Yingliang <yangyingliang@huawei.com>