CVE-2023-54110
- Source
- https://cve.org/CVERecord?id=CVE-2023-54110
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54110.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-54110
- Downstream
- Related
- Published
- 2025-12-24T13:06:33.495Z
- Modified
- 2026-03-11T07:44:10.103153Z
- Summary
- usb: rndis_host: Secure rndis_query check against int overflow
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usb: rndishost: Secure rndisquery check against int overflow
Variables off and len typed as uint32 in rndisquery function are controlled by incoming RNDIS response message thus their value may be manipulated. Setting off to a unexpectetly large value will cause the sum with len and 8 to overflow and pass the implemented validation step. Consequently the response pointer will be referring to a location past the expected buffer boundaries allowing information leakage e.g. via RNDISOID8023PERMANENTADDRESS OID.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54110.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/02ffb4ecf0614c58e3d0e5bfbe99588c9ddc77c0
- https://git.kernel.org/stable/c/11cd4ec6359d90b13ffb8f85a9df8637f0cf8d95
- https://git.kernel.org/stable/c/232ef345e5d76e5542f430a29658a85dbef07f0b
- https://git.kernel.org/stable/c/39eadaf5611ddd064ad1c53da65c02d2b0fe22a4
- https://git.kernel.org/stable/c/55782f6d63a5a3dd3b84c1e0627738fc5b146b4e
- https://git.kernel.org/stable/c/a713602807f32afc04add331410c77ef790ef77a
- https://git.kernel.org/stable/c/c7dd13805f8b8fc1ce3b6d40f6aff47e66b72ad2
- https://git.kernel.org/stable/c/ebe6d2fcf7835f98cdbb1bd5e0414be20c321578
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54110.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-54110
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedddda08624013e8435e9f7cfc34a35bd7b3520b6dFixed55782f6d63a5a3dd3b84c1e0627738fc5b146b4eFixed02ffb4ecf0614c58e3d0e5bfbe99588c9ddc77c0Fixedebe6d2fcf7835f98cdbb1bd5e0414be20c321578Fixed232ef345e5d76e5542f430a29658a85dbef07f0bFixed11cd4ec6359d90b13ffb8f85a9df8637f0cf8d95Fixed39eadaf5611ddd064ad1c53da65c02d2b0fe22a4Fixeda713602807f32afc04add331410c77ef790ef77aFixedc7dd13805f8b8fc1ce3b6d40f6aff47e66b72ad2
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.22Fixed4.14.303
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.270
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.229
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.163
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.87
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.0.19
- Type
- ECOSYSTEM
- Events
-
Introduced6.1.0Fixed6.1.5