{"id":"CVE-2020-36158","details":"mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332.","aliases":["A-177123726","PUB-A-177123726"],"modified":"2026-05-11T12:08:26.933454Z","published":"2021-01-05T05:15:10.737Z","related":["ALSA-2021:4356","SUSE-SU-2021:0095-1","SUSE-SU-2021:0108-1","SUSE-SU-2021:0117-1","SUSE-SU-2021:0118-1","SUSE-SU-2021:0133-1","SUSE-SU-2021:0347-1","SUSE-SU-2021:0348-1","SUSE-SU-2021:0362-1","SUSE-SU-2021:0367-1","SUSE-SU-2021:0377-1","SUSE-SU-2021:0408-1","SUSE-SU-2021:0433-1","SUSE-SU-2021:0434-1","SUSE-SU-2021:0437-1","SUSE-SU-2021:0438-1","SUSE-SU-2021:0452-1","SUSE-SU-2021:14630-1","openSUSE-SU-2021:0060-1","openSUSE-SU-2021:0075-1","openSUSE-SU-2021:0242-1"],"database_specific":{"unresolved_ranges":[{"cpe":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"10.0"}]},{"cpe":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"9.0"}]},{"cpe":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"33"}]},{"cpe":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"3.0"},{"fixed":"4.4.250"},{"introduced":"4.5"},{"fixed":"4.9.250"},{"introduced":"4.10"},{"fixed":"4.14.214"},{"introduced":"4.15"},{"fixed":"4.19.166"},{"introduced":"4.20"},{"fixed":"5.4.88"},{"introduced":"5.5"},{"fixed":"5.10.6"}]},{"source":"DESCRIPTION","extracted_events":[{"fixed":"5.10.4"}]}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCHBIRS27VMOGMBHPWP2R7SZRFXT6O6U/"},{"type":"WEB","url":"https://lore.kernel.org/r/20201206084801.26479-1-ruc_zhangxiaohui%40163.com"},{"type":"WEB","url":"https://patchwork.kernel.org/project/linux-wireless/patch/20201206084801.26479-1-ruc_zhangxiaohui%40163.com/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/02/msg00018.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/03/msg00010.html"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20210212-0002/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2021/dsa-4843"},{"type":"FIX","url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5c455c5ab332773464d02ba17015acdca198f03d"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/5c455c5ab332773464d02ba17015acdca198f03d"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"5c455c5ab332773464d02ba17015acdca198f03d"}],"database_specific":{"source":"REFERENCES"}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-36158.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/torvalds/linux","events":[{"introduced":"0"},{"fixed":"5c455c5ab332773464d02ba17015acdca198f03d"}],"database_specific":{"source":"REFERENCES"}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-36158.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}]}