In bpfprogtestrunskb of test_run.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "21261226239863937624850835002703737329", "16706520897025264762593216923580214895", "313493991065467286751517027935894986604", "29525866352979770284983500331269578854", "314471592807802510217019750212058154090", "143154645364520731581125386518759613351", "282373998667559027136680477879867090126", "303213216589221224387929857152612279942", "44311382497953428347295105526729049306", "113239973219782307306261239151898851079", "156676553384369242207404029827362857929", "290951766425281477626020750882539795651", "105444721892440035314799294157551269610" ] }, "id": "PUB-A-154175781-301d8ca0", "source": "https://android.googlesource.com/kernel/common/+/20fdf274472998123a8d173ba4cb6282ff6b63bd", "deprecated": false, "signature_version": "v1", "target": { "file": "net/bpf/test_run.c" }, "signature_type": "Line" }, { "digest": { "length": 1216.0, "function_hash": "99886494805567661239481537683100755440" }, "id": "PUB-A-154175781-f8a688bd", "source": "https://android.googlesource.com/kernel/common/+/20fdf274472998123a8d173ba4cb6282ff6b63bd", "deprecated": false, "signature_version": "v1", "target": { "file": "net/bpf/test_run.c", "function": "bpf_prog_test_run_skb" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/kernel/common/+/20fdf274472998123a8d173ba4cb6282ff6b63bd" ], "spl": "2022-03-05", "severity": "Moderate", "types": [ "ID" ] }