PUB-A-181346545

See a problem?

Import Source

https://storage.googleapis.com/android-osv/PUB-A-181346545.json

JSON Data

https://api.osv.dev/v1/vulns/PUB-A-181346545

Aliases

A-181346545
CVE-2021-0996

Published

2021-12-01T00:00:00Z

Modified

2024-11-06T12:16:03.231308Z

Summary

[none]

Details

In nfaHciCallback of HciEventManager.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure over NFC with System execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/packages/apps/Nfc

Package

Name: platform/packages/apps/Nfc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12:0

Fixed

12:2021-12-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1127.0,
                "function_hash": "172923655756302291063356266705277028508"
            },
            "id": "PUB-A-181346545-3dc4e98f",
            "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d0036c14c0a6da7f0567f90052ecbbd4657e42f5",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "nci/jni/HciEventManager.cpp",
                "function": "HciEventManager::nfaHciCallback"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "318035084337290619674740155915310510867",
                    "86137731946867326805606705081369926130",
                    "286564177019519813437093599060059642402",
                    "11876562026318324878696478696135779449",
                    "113336880759440159700332416151799658294",
                    "314195783414381717693130490562681532941",
                    "199756952328838585389425144633112623955",
                    "93734117183106986541042974404983304804",
                    "78843905427150278030523467609738593472",
                    "44625852898386418973852311755032259448",
                    "70069643358981674564266814711647675555",
                    "278693986712162930792261506515603221196",
                    "269054370538398151964396198189849018763",
                    "221760561883641550706662575064371821485",
                    "8800284596126465199717721093475055653",
                    "283554715526979460669321300352238192783",
                    "306863464749530576741797108917293002611",
                    "243786863521775750259705421927072140392"
                ]
            },
            "id": "PUB-A-181346545-ac6d5093",
            "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d0036c14c0a6da7f0567f90052ecbbd4657e42f5",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "nci/jni/HciEventManager.cpp"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Nfc/+/d0036c14c0a6da7f0567f90052ecbbd4657e42f5"
    ],
    "spl": "2021-12-01",
    "severity": "Moderate",
    "types": [
        "ID"
    ]
}