CVE-2022-48837
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-48837
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-48837.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-48837
- Downstream
- Related
- Published
- 2024-07-16T13:15:11Z
- Modified
- 2025-08-09T19:01:27Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: rndis: prevent integer overflow in rndissetresponse()
If "BufOffset" is very large the "BufOffset + 8" operation can have an integer overflow.
- References
-
- https://git.kernel.org/stable/c/138d4f739b35dfb40438a0d5d7054965763bfbe7
- https://git.kernel.org/stable/c/21829376268397f9fd2c35cfa9135937b6aa3a1e
- https://git.kernel.org/stable/c/28bc0267399f42f987916a7174e2e32f0833cc65
- https://git.kernel.org/stable/c/56b38e3ca4064041d93c1ca18828c8cedad2e16c
- https://git.kernel.org/stable/c/65f3324f4b6fed78b8761c3b74615ecf0ffa81fa
- https://git.kernel.org/stable/c/8b3e4d26bc9cd0f6373d0095b9ffd99e7da8006b
- https://git.kernel.org/stable/c/c7953cf03a26876d676145ce5d2ae6d8c9630b90
- https://git.kernel.org/stable/c/df7e088d51cdf78b1a0bf1f3d405c2593295c7b0