PUB-A-199680600

See a problem?

Import Source

https://storage.googleapis.com/android-osv/PUB-A-199680600.json

JSON Data

https://api.osv.dev/v1/vulns/PUB-A-199680600

Aliases

A-199680600
CVE-2021-0976

Published

2021-12-01T00:00:00Z

Modified

2024-11-06T12:16:03.231308Z

Summary

[none]

Details

In toBARK of floor0.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

Affected packages

Android / platform/external/tremolo

Package

Name: platform/external/tremolo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12:0

Fixed

12:2021-12-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "59814497835580148945611152291447080798",
                    "59222868345568394881679881456526728062",
                    "327123764676316284280997891129306969048",
                    "310596693034273193161968879394180992092",
                    "102013081266496155175289100218860879710",
                    "261432765872026087410023367465826721598",
                    "158102761263987004879284871189691750194",
                    "22973856383150291006664216045059137597",
                    "90967728165177659703225255217198863725",
                    "23258736729046705785773523709273533401",
                    "19962664516263339246244961524114140952",
                    "20473758836815840744504536365862021305",
                    "115598465938392886496054463110745890830",
                    "65071048096198182303191875267649971926",
                    "138132548116636708575717343582453866871",
                    "219390328297744029839353756239053407943",
                    "268903528114227592080888517772018697484",
                    "275173558937614824776936746776698544394",
                    "265129186455283899990340068847358550937",
                    "320432059702353801567135996484197429338",
                    "57584558512179362305791220866959624466",
                    "251846997660083456570648292230490526674",
                    "78521668697906284040513749670165240644",
                    "45181652765866960198281755016139135887",
                    "137870592998838758491640089117655567837",
                    "320957546353454618615222493586069651131",
                    "322133960457728034670440798308516379121",
                    "143625966209777607134828368074803751976",
                    "333955587058621585562011235326280360213",
                    "228638514449322436122449998239814913205"
                ]
            },
            "id": "PUB-A-199680600-082a9512",
            "source": "https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "Tremolo/floor0.c"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 351.0,
                "function_hash": "261630653441592833805222842496155440021"
            },
            "id": "PUB-A-199680600-3e04ed04",
            "source": "https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "Tremolo/floor0.c",
                "function": "toBARK"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6"
    ],
    "spl": "2021-12-01",
    "severity": "Moderate",
    "types": [
        "ID"
    ]
}