linux is vulnerable to Integer Overflows. A local authenticated attacker is able to cause integer overflows in rndis_query_oid
of drivers/net/wireless/rndis_wlan.c
.
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2023-23559
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b870e73a56c4cccbec33224233eaf295839f228c
lists.debian.org/debian-lts-announce/2023/05/msg00005.html
lists.debian.org/debian-lts-announce/2023/05/msg00006.html
patchwork.kernel.org/project/linux-wireless/patch/20230110173007.57110-1-szymon.heidrich%40gmail.com/
patchwork.kernel.org/project/linux-wireless/patch/[email protected]/
security.netapp.com/advisory/ntap-20230302-0003/