In the Linux kernel, the following vulnerability has been resolved: comedi: vmk80xx: fix bulk-buffer overflow The driver is using endpoint-sized buffers but must not assume that the tx and rx buffers are of equal size or a malicious device could overflow the slab-allocated receive buffer when doing bulk transfers.
| Product | Vendor | Version |
|---|---|---|
| Linux | Linux | 2.2.0, 2.2.1, 2.2.2 |
| Linux | Linux | n/a |
| Linux | Linux | Windows 10 Version 1803 for x64-based Systems |
| Linux | Linux | ChakraCore |