The vulnerability of the rndis_set_response() function in the rndis component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the rndissetresponse function in the rndis component of the Linux operating system is related to the operation “BufOffset + 8”, which can lead to a integer overflow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

PT-2023-35335 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.272 Description: A potential buffer overflow issue exists in the rndis wlan component of the Linux Kernel. The issue is related to the rndis query oid function. This problem was introduced in version v2.6....