Description
In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
Related CPE's
o
linux
linux_kernel
6
a
netapp
hci_baseboard_management_controller
5
Vulnerable
References
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html
Mailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html
Mailing ListThird Party Advisory
https://security.netapp.com/advisory/ntap-20230302-0003/
PatchThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2023-01-13T01:15:10.300
2 years agoLast modified
2024-03-25T01:15:53.327
1 year ago