Description
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: prevent integer overflow in rndis_set_response() If "BufOffset" is very large the "BufOffset + 8" operation can have an integer overflow.
References (8)
Core 8
Core References
Mailing List, Patch
https://git.kernel.org/stable/c/8b3e4d26bc9cd0f6373d0095b9ffd99e7da8006b
Mailing List, Patch
https://git.kernel.org/stable/c/c7953cf03a26876d676145ce5d2ae6d8c9630b90
Mailing List, Patch
https://git.kernel.org/stable/c/138d4f739b35dfb40438a0d5d7054965763bfbe7
Mailing List, Patch
https://git.kernel.org/stable/c/21829376268397f9fd2c35cfa9135937b6aa3a1e
Mailing List, Patch
https://git.kernel.org/stable/c/28bc0267399f42f987916a7174e2e32f0833cc65
Mailing List, Patch
https://git.kernel.org/stable/c/56b38e3ca4064041d93c1ca18828c8cedad2e16c
Mailing List, Patch
https://git.kernel.org/stable/c/df7e088d51cdf78b1a0bf1f3d405c2593295c7b0
Mailing List, Patch
https://git.kernel.org/stable/c/65f3324f4b6fed78b8761c3b74615ecf0ffa81fa
Scores
CVSS v3
7.8
EPSS
0.0026
EPSS Percentile
16.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-190
Status
published
Products (23)
linux/Kernel
4.14.267 - 4.14.273linux
linux/Kernel
4.19.230 - 4.19.236linux
linux/Kernel
4.9.302 - 4.9.308linux
linux/Kernel
5.10.101 - 5.10.108linux
linux/Kernel
5.15.24 - 5.15.31linux
linux/Kernel
5.16.10 - 5.16.17linux
linux/Kernel
5.4.180 - 5.4.187linux
Linux/Linux
2724ebafda0a8df08a9cb91557d33226bee80f7b - df7e088d51cdf78b1a0bf1f3d405c2593295c7b0
Linux/Linux
2da3b0ab54fb7f4d7c5a82757246d0ee33a47197 - 56b38e3ca4064041d93c1ca18828c8cedad2e16c
Linux/Linux
38ea1eac7d88072bbffb630e2b3db83ca649b826 - 65f3324f4b6fed78b8761c3b74615ecf0ffa81fa
... and 13 more
Published
Jul 16, 2024
Tracked Since
Feb 18, 2026