Bugzilla – Bug 1227987
VUL-0: CVE-2022-48837: kernel: usb: gadget: rndis: prevent integer overflow in rndis_set_response()
Last modified: 2024-07-18 14:06:38 UTC
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: prevent integer overflow in rndis_set_response() If "BufOffset" is very large the "BufOffset + 8" operation can have an integer overflow. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-48837 https://www.cve.org/CVERecord?id=CVE-2022-48837 https://git.kernel.org/stable/c/138d4f739b35dfb40438a0d5d7054965763bfbe7 https://git.kernel.org/stable/c/21829376268397f9fd2c35cfa9135937b6aa3a1e https://git.kernel.org/stable/c/28bc0267399f42f987916a7174e2e32f0833cc65 https://git.kernel.org/stable/c/56b38e3ca4064041d93c1ca18828c8cedad2e16c https://git.kernel.org/stable/c/65f3324f4b6fed78b8761c3b74615ecf0ffa81fa https://git.kernel.org/stable/c/8b3e4d26bc9cd0f6373d0095b9ffd99e7da8006b https://git.kernel.org/stable/c/c7953cf03a26876d676145ce5d2ae6d8c9630b90 https://git.kernel.org/stable/c/df7e088d51cdf78b1a0bf1f3d405c2593295c7b0 https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2022/CVE-2022-48837.mbox https://bugzilla.redhat.com/show_bug.cgi?id=2298178