CVE-2021-28660 log

Severity High
Remote Yes
Type Arbitrary code execution
rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of releases, CVE IDs are not normally used for drivers/staging/* (unfinished work); however, system integrators may have situations in which a drivers/staging issue is relevant to their own customer base.
Group Package Affected Fixed Severity Status Ticket
AVG-1688 linux-lts 5.10.23-1 5.10.24-1 High Fixed
AVG-1687 linux-hardened 5.11.6.hardened1-1 5.11.7.hardened1-1 High Fixed
AVG-1686 linux-zen 5.11.6.zen1-1 5.11.7.zen1-1 High Fixed
AVG-1685 linux 5.11.6.arch1-1 5.11.7.arch1-1 High Fixed