CVE-2022-25375

Published: Feb 20, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.16.10

x_refsource_MISC

https://github.com/torvalds/linux/commit/38ea1eac7d88072bbffb630e2b3db83ca649b826

x_refsource_MISC

https://github.com/szymonh/rndis-co

x_refsource_MISC

[oss-security] 20220221 CVE-2022-25375 : Linux RNDIS USB Gadget memory extraction via packet filter

mailing-list

x_refsource_MLIST

DSA-5092

vendor-advisory

x_refsource_DEBIAN

[debian-lts-announce] 20220309 [SECURITY] [DLA 2940-1] linux security update

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20220309 [SECURITY] [DLA 2941-1] linux-4.19 security update

mailing-list

x_refsource_MLIST

DSA-5096

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-25375

Description

Affected Products

References