In grehandleoffloads of ip_gre.c, there is a possible page fault due to an invalid memory access. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "110645044466692755255968319713222398679", "182346871114727394199261601235907835902", "60235824133216559719319124150257643183", "8614246226498173402592427908140037717" ] }, "id": "ASB-A-150694665-4aaca501", "source": "http://android.googlesource.com/kernel/common/+/1d011c4803c72f3907eccfc1ec63caefb852fcbf", "deprecated": true, "signature_version": "v1", "target": { "file": "net/ipv4/ip_gre.c" }, "signature_type": "Line" }, { "digest": { "length": 126.0, "function_hash": "36343471337147875092234569293076229804" }, "id": "ASB-A-150694665-a98b847c", "source": "http://android.googlesource.com/kernel/common/+/1d011c4803c72f3907eccfc1ec63caefb852fcbf", "deprecated": true, "signature_version": "v1", "target": { "file": "net/ipv4/ip_gre.c", "function": "gre_handle_offloads" }, "signature_type": "Function" } ], "fixes": [ "http://android.googlesource.com/kernel/common/+/1d011c4803c72f3907eccfc1ec63caefb852fcbf" ], "spl": "2022-01-05", "severity": "High", "types": [ "ID" ] }