A vulnerability was found in drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1746726]
This flaw is classified in the attack vector (local) that the device appears to the kernel. Local attacks would not be considered remote attacks if the attacker must first ssh in.
Red Hat Enterprise Enterprise Linux does not ship a kernel with this network device enabled.