Name of the Vulnerable Software and Affected Versions:

Linux kernel (affected versions not specified)

Description:

The Linux kernel contains an out-of-bounds bug in the `rtl9300 i2c smbus xfer` function. The `data->block[0]` variable, sourced from user input, lacks proper validation, potentially leading to a buffer overflow. The issue is addressed by verifying the value of `data->block[0]` before use.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.