PUB-A-161010552
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/PUB-A-161010552.json
- JSON Data
- https://api.osv.dev/v1/vulns/PUB-A-161010552
- Aliases
-
- A-161010552
- CVE-2021-39792
- Published
- 2022-03-01T00:00:00Z
- Modified
- 2026-01-21T16:24:30.787107Z
- Summary
- [none]
- Details
-
In usbgadgetgiveback_request of core.c, there is a possible use after free out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / :linux_kernel:
Package
- Name
- :linux_kernel:
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/kernel/common/+/575a552ac7c6b"
],
"vanir_signatures": [
{
"signature_version": "v1",
"source": "https://android.googlesource.com/kernel/common/+/575a552ac7c6b",
"deprecated": false,
"digest": {
"length": 411.0,
"function_hash": "100410976886787197906451013634522742914"
},
"signature_type": "Function",
"id": "PUB-A-161010552-0e279616",
"target": {
"function": "acc_function_unbind",
"file": "drivers/usb/gadget/function/f_accessory.c"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/kernel/common/+/575a552ac7c6b",
"deprecated": false,
"digest": {
"line_hashes": [
"92858488608888256670078473141606406054",
"180875822491025722831554686199663901729",
"17157550638725447842886934216314682555",
"255658971149427072573943214365510181568",
"150652126279476852176193119361296209010",
"17320356894890537060751883159658643531",
"16324969859119708472053503461875971972",
"83196457260844783908370531202291906777",
"256794204682412864343913883574001711832",
"180875822491025722831554686199663901729",
"110329735996145910767545249120163837521",
"228326681755720983503190651504840756417",
"250118894154258636393811237955625185243"
],
"threshold": 0.9
},
"signature_type": "Line",
"id": "PUB-A-161010552-76ea9a50",
"target": {
"file": "drivers/usb/gadget/function/f_accessory.c"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/kernel/common/+/575a552ac7c6b",
"deprecated": false,
"digest": {
"length": 1434.0,
"function_hash": "241108072870579792262434467224001311540"
},
"signature_type": "Function",
"id": "PUB-A-161010552-8e087dff",
"target": {
"function": "create_bulk_endpoints",
"file": "drivers/usb/gadget/function/f_accessory.c"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/kernel/common/+/575a552ac7c6b",
"deprecated": false,
"digest": {
"length": 1523.0,
"function_hash": "237090920825579070897266722571206435477"
},
"signature_type": "Function",
"id": "PUB-A-161010552-c06d3503",
"target": {
"function": "acc_read",
"file": "drivers/usb/gadget/function/f_accessory.c"
}
}
],
"types": [
"ID"
],
"severity": "Moderate",
"spl": "2022-03-05"
}