rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of kernel.org releases CVE IDs are not normally used for drivers/staging/* (unfinished work); however system integrators may have situations in which a drivers/staging issue is relevant to their own customer base.

🗓️ 24 Mar 2021 07:00:00Reported by MicrosoftType

mscve

mscve🔗 msrc.microsoft.com👁 2 Views

rtw_wx_set_scan in rtl8188eu ioctl_linux.c allows out-of-bounds write past ssid[] in Linux 5.11.6.

Reporter	Title	Published	Views	Family All 246
ATTACKERKB	CVE-2021-28660	17 Mar 202115:15	–	attackerkb
Tenable Nessus	Amazon Linux 2 : kernel (ALAS-2021-1627)	22 Apr 202100:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-002)	2 May 202200:00	–	nessus
Tenable Nessus	Debian DLA-2610-1 : linux-4.19 security update	31 Mar 202100:00	–	nessus
Tenable Nessus	Debian DLA-2689-1 : linux - LTS security update	24 Jun 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : kernel (EulerOS-SA-2021-1879)	18 May 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.1 : kernel (EulerOS-SA-2021-1967)	4 Jun 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.0 : kernel (EulerOS-SA-2021-1971)	4 Jun 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2021-2002)	30 Jun 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : kernel (EulerOS-SA-2021-2051)	1 Jul 202100:00	–	nessus

Vulners

Node

microsoft cbl2_kernel_5.10.78.1-1Range<5.10.78.1-1

16 Dec 2021 08:00Current

7.7High risk

Vulners AI Score7.7

CVSS 28.3

CVSS 3.18.8

EPSS0.00319

wifi driver staging driver out of bounds write network name buffer linux kernel 5.11.6 rtl8188eu chip