{"id":"CVE-2021-28660","details":"rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the -\u003essid[] array. NOTE: from the perspective of kernel.org releases, CVE IDs are not normally used for drivers/staging/* (unfinished work); however, system integrators may have situations in which a drivers/staging issue is relevant to their own customer base.","modified":"2026-03-15T22:37:02.110865Z","published":"2021-03-17T15:15:13.593Z","related":["SUSE-SU-2021:1175-1","SUSE-SU-2021:1176-1","SUSE-SU-2021:1177-1","SUSE-SU-2021:1210-1","SUSE-SU-2021:1211-1","SUSE-SU-2021:1238-1","SUSE-SU-2021:1365-1","SUSE-SU-2021:1395-1","SUSE-SU-2021:1573-1","SUSE-SU-2021:1596-1","SUSE-SU-2021:1617-1","SUSE-SU-2021:1623-1","SUSE-SU-2021:1624-1","SUSE-SU-2021:1625-1","SUSE-SU-2021:1975-1","SUSE-SU-2021:1977-1","SUSE-SU-2021:2198-1","SUSE-SU-2021:2577-1","openSUSE-SU-2021:0532-1","openSUSE-SU-2021:0758-1","openSUSE-SU-2021:1975-1","openSUSE-SU-2021:1977-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TJPVQZPY3DHPV5I3IVNMSMO6D3PKZISX/"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20210507-0008/"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2022/11/18/1"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2022/11/21/2"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/03/msg00035.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=74b6b20df8cfe90ada777d621b54c32e69e27cd7"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"3.12"},{"fixed":"4.4.262"}]},{"events":[{"introduced":"4.5"},{"fixed":"4.9.262"}]},{"events":[{"introduced":"4.10"},{"fixed":"4.14.226"}]},{"events":[{"introduced":"4.15"},{"fixed":"4.19.181"}]},{"events":[{"introduced":"4.20"},{"fixed":"5.4.106"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.10.24"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.11.7"}]},{"events":[{"introduced":"0"},{"last_affected":"33"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-28660.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}