PUB-A-169258455

See a problem?
Import Source
https://storage.googleapis.com/android-osv/PUB-A-169258455.json
JSON Data
https://api.osv.dev/v1/vulns/PUB-A-169258455
Aliases
  • A-169258455
  • CVE-2021-0541
Published
2021-06-01T00:00:00Z
Modified
2024-11-06T12:16:03.231308Z
Summary
[none]
Details

In phNxpNciHalextprocessnfcinitrsp of phNxpNciHalext.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the NFC server with System execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/hardware/nxp/nfc

Package

Name
platform/hardware/nxp/nfc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2021-06-01

Affected versions

Other

11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "97290956096428615455124664942432763928",
                    "58925395539975537022167760098420146502",
                    "217583250833768725158184477603674360682",
                    "127825631077929086567548143998236003561",
                    "220672813519931724593764497294769538058",
                    "112096256538547024133258105471664200734",
                    "84379258600712013503822715300061827613",
                    "278464234373023644909479713990605903011",
                    "177157822817952035721270490361264598341",
                    "179169349734393028293033443383814638062",
                    "56415080639281669016773120064919336679",
                    "166898878524366280083477498272247023520",
                    "88772628477503973346895239460125659704",
                    "173907730989922706277814702897535049542",
                    "283041784459485193608790042938176950786",
                    "214966906178459763941626098100549438539",
                    "61879373756102009254619678861584058161",
                    "59549954960698264314087081383249120756",
                    "316881036539601123462451115603377295530",
                    "27317740026021532576142766162395261092",
                    "36376231538664447278548353305523013972",
                    "186468173379173732794241072027639446378",
                    "21197266393008656982546645723707180106",
                    "86004207588887082352540522015556611726",
                    "6909042434942189174563220950203407049"
                ]
            },
            "id": "PUB-A-169258455-346b95af",
            "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/7f746d6db0f8c53b355654431ea1f14e0827ec33",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "halimpl/hal/phNxpNciHal_ext.cc"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 2837.0,
                "function_hash": "155973090357894353401946914640411702981"
            },
            "id": "PUB-A-169258455-b5ccd602",
            "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/7f746d6db0f8c53b355654431ea1f14e0827ec33",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "halimpl/hal/phNxpNciHal_ext.cc",
                "function": "phNxpNciHal_ext_process_nfc_init_rsp"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/hardware/nxp/nfc/+/7f746d6db0f8c53b355654431ea1f14e0827ec33"
    ],
    "spl": "2021-06-01",
    "severity": "Moderate",
    "types": [
        "ID"
    ]
}