QwikSec

Security Database

CVE

CWE

Training

CVE-2021-28660

Published: Mar 17, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of kernel.org releases, CVE IDs are not normally used for drivers/staging/* (unfinished work); however, system integrators may have situations in which a drivers/staging issue is relevant to their own customer base.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=74b6b20df8cfe90ada777d621b54c32e69e27cd7

FEDORA-2021-bb755ed5e3

vendor-advisory

[debian-lts-announce] 20210330 [SECURITY] [DLA 2610-1] linux-4.19 security update

mailing-list

https://security.netapp.com/advisory/ntap-20210507-0008/

[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update

mailing-list

[oss-security] 20221118 Linux kernel: staging: rtl8712: A Use-after-Free/Double-Free bug in read_bbreg_hdl in drivers/staging/rtl8712/rtl8712_cmd.c

mailing-list

[oss-security] 20221121 Re: Linux kernel: staging: rtl8712: A Use-after-Free/Double-Free bug in read_bbreg_hdl in drivers/staging/rtl8712/rtl8712_cmd.c

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.