retired/CVE-2022-20423


1
2
3
4
5
6
7
8
9
10
11
12
13

Description: usb: gadget: rndis: prevent integer overflow in rndis_set_response()
References:
 https://source.android.com/docs/security/bulletin/2022-10-01
 https://android.googlesource.com/kernel/common/+/0a21a3eb9fcea0609f3bc8bee1f796788e0a770e
 https://android.googlesource.com/kernel/common/+/28bc0267399f4
Notes:
Bugs:
upstream: released (5.17) [65f3324f4b6fed78b8761c3b74615ecf0ffa81fa]
5.10-upstream-stable: released (5.10.108) [28bc0267399f42f987916a7174e2e32f0833cc65]
4.19-upstream-stable: released (4.19.236) [138d4f739b35dfb40438a0d5d7054965763bfbe7]
sid: released (5.16.18-1)
5.10-bullseye-security: released (5.10.113-1)
4.19-buster-security: released (4.19.249-1)