ASB-A-373638114
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-373638114.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-373638114
- Aliases
-
- A-373638114
- CVE-2025-22413
- Published
- 2025-03-01T00:00:00Z
- Modified
- 2025-03-03T15:57:18.949330Z
- Summary
- [none]
- Details
-
In multiple functions of hyp-main.c, there is a possible privilege escalation due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / :linux_kernel:
Package
- Name
- :linux_kernel:
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 1076.0,
"function_hash": "148454252575681090957833428128627055637"
},
"id": "ASB-A-373638114-4e8e6073",
"source": "https://android.googlesource.com/kernel/common/+/1a3366f0d3d9b94a8c025d9863edc3b427435c4c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "arch/arm64/kvm/hyp/nvhe/hyp-main.c",
"function": "flush_hyp_vcpu"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"88806487874079903129932328106404966041",
"192608094885790267886802684299369199796",
"37046479976891882149375872543523566445",
"166722324875833711955036644161891583204",
"59496392083652247504463708794120173392",
"33932093482366427293180854021950481040",
"189068059293782396451140393116015011694",
"53925709729284983910903683264871566247",
"201543084831759698333199909933197473931",
"251721975929196173730805254998025562577",
"263035614853255340998385577026896881639",
"91085910657237868778890481738821299453",
"161599105729585692481879944017378241589",
"337080295458693975985373773423197310154",
"255909480030532430153738347682455354819",
"144216150692101086188934081520817539599",
"74031601620163822489627961477861841251",
"111604734531736771629519158137139276346",
"227243364153970874742953449006592725522"
]
},
"id": "ASB-A-373638114-55bfffbe",
"source": "https://android.googlesource.com/kernel/common/+/1a3366f0d3d9b94a8c025d9863edc3b427435c4c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "arch/arm64/kvm/hyp/nvhe/hyp-main.c"
},
"signature_type": "Line"
},
{
"digest": {
"length": 512.0,
"function_hash": "6612826506756150171725956826780828467"
},
"id": "ASB-A-373638114-877978a0",
"source": "https://android.googlesource.com/kernel/common/+/1a3366f0d3d9b94a8c025d9863edc3b427435c4c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "arch/arm64/kvm/hyp/nvhe/hyp-main.c",
"function": "handle___kvm_vcpu_run"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"88806487874079903129932328106404966041",
"192608094885790267886802684299369199796",
"37046479976891882149375872543523566445",
"166722324875833711955036644161891583204",
"59496392083652247504463708794120173392",
"33932093482366427293180854021950481040",
"189068059293782396451140393116015011694",
"53925709729284983910903683264871566247",
"201543084831759698333199909933197473931",
"251721975929196173730805254998025562577",
"263035614853255340998385577026896881639",
"91085910657237868778890481738821299453",
"161599105729585692481879944017378241589",
"337080295458693975985373773423197310154",
"255909480030532430153738347682455354819",
"144216150692101086188934081520817539599",
"74031601620163822489627961477861841251",
"111604734531736771629519158137139276346",
"227243364153970874742953449006592725522"
]
},
"id": "ASB-A-373638114-ca1174bc",
"source": "https://android.googlesource.com/kernel/common/+/add3d68602a0c48ed2d5659f0cf26d869776ab35",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "arch/arm64/kvm/hyp/nvhe/hyp-main.c"
},
"signature_type": "Line"
},
{
"digest": {
"length": 512.0,
"function_hash": "6612826506756150171725956826780828467"
},
"id": "ASB-A-373638114-cb40a4a8",
"source": "https://android.googlesource.com/kernel/common/+/add3d68602a0c48ed2d5659f0cf26d869776ab35",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "arch/arm64/kvm/hyp/nvhe/hyp-main.c",
"function": "handle___kvm_vcpu_run"
},
"signature_type": "Function"
},
{
"digest": {
"length": 1076.0,
"function_hash": "148454252575681090957833428128627055637"
},
"id": "ASB-A-373638114-e1ef7b02",
"source": "https://android.googlesource.com/kernel/common/+/add3d68602a0c48ed2d5659f0cf26d869776ab35",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "arch/arm64/kvm/hyp/nvhe/hyp-main.c",
"function": "flush_hyp_vcpu"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/kernel/common/+/1a3366f0d3d9b94a8c025d9863edc3b427435c4c",
"https://android.googlesource.com/kernel/common/+/add3d68602a0c48ed2d5659f0cf26d869776ab35"
],
"spl": "2025-03-05",
"severity": "High",
"types": [
"ID"
]
}