Astra Linux - уязвимость в linux-5.10, linux

In rndisqueryoid in drivers/net/wireless/rndiswlan.c within the Linux kernel, from version 6.1.5 onwards, there is an integer overflow in a mathematical operation...

Astra Linux - уязвимость в linux-5.15, linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: usb: rndishost: The secure rdrisquery check prevents integer overflow. The variables off and len, which are typed as uint32 in the rdrisquery function, are controlled by the incoming RNDIS response message. Therefore, their value...

CVE-2023-54110

In the Linux kernel, the following vulnerability has been resolved: usb: rndishost: Secure rndisquery check against int overflow Variables off and len typed as uint32 in rndisquery function are controlled by incoming RNDIS response message thus their value may be manipulated. Setting off to a...

CVE-2023-54110 usb: rndis_host: Secure rndis_query check against int overflow

In the Linux kernel, the following vulnerability has been resolved: usb: rndishost: Secure rndisquery check against int overflow Variables off and len typed as uint32 in rndisquery function are controlled by incoming RNDIS response message thus their value may be manipulated. Setting off to a...

CVE-2023-54110

The CVE-2023-54110 issue is in the Linux kernel's usb rndis_host rndis_query path, where off and len (uint32) can be influenced by a received RNDIS response, enabling an out-of-bounds access and information leakage (e.g., via OID_802_3_PERMANENT_ADDRESS). Connected advisories (SUSE, EulerOS, Astr...

CVE-2023-54110 usb: rndis_host: Secure rndis_query check against int overflow

In the Linux kernel, the following vulnerability has been resolved: usb: rndishost: Secure rndisquery check against int overflow Variables off and len typed as uint32 in rndisquery function are controlled by incoming RNDIS response message thus their value may be manipulated. Setting off to a...

PT-2025-53187

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s rndis query function where variables off and len, typed as uint32, are susceptible to manipulation through incoming RNDIS response messages. An attack...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414331)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414331 advisory. In rndisqueryoid in drivers/net/wireless/rndiswlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition. Tenable has extracted the...

OESA-2023-1054 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In rndisqueryoid in drivers/net/wireless/rndiswlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.CVE-2023-23559 No description is available for this CVE.CVE-2023-0047...

OESA-2023-1055 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In rndisqueryoid in drivers/net/wireless/rndiswlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.CVE-2023-23559 No description is available for this CVE.CVE-2023-0047...

UBUNTU-CVE-2023-23559

In rndisqueryoid in drivers/net/wireless/rndiswlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition...

Linux kernel 输入验证错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel version 6.1.5 and earlier, which stems from an integer overflow in rndisqueryoid in drivers/net/wireless/rndiswlan.c. The...