In nfconntrackhelperq931 of nfconntrackh323main.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not required for exploitation.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "236472113983263375503750682828725632157", "137951220192068196162866587713860893203", "67740364489710039005149358498670798563", "224464401093644057874143499389546186097" ] }, "id": "ASB-A-174904512-6b5e7136", "source": "https://android.googlesource.com/kernel/common/+/396ba2fc4f27ef6c44bbc0098bfddf4da76dc4c9", "deprecated": false, "signature_version": "v1", "target": { "file": "net/netfilter/nf_conntrack_h323_main.c" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/kernel/common/+/396ba2fc4f27ef6c44bbc0098bfddf4da76dc4c9" ], "spl": "2021-06-05", "severity": "High", "types": [ "EoP" ] }