PUB-A-260568367

See a problem?

Import Source

https://storage.googleapis.com/android-osv/PUB-A-260568367.json

JSON Data

https://api.osv.dev/v1/vulns/PUB-A-260568367

Aliases

A-260568367
CVE-2023-20989

Published

2023-06-01T00:00:00Z

Modified

2025-11-17T16:39:28.955843Z

Summary

[none]

Details

In btmblewriteadvenablecomplete of btmble_gap.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

References

https://source.android.com/security/bulletin/2023-06-01

Affected packages

Android / platform/packages/modules/Bluetooth

Package

Name: platform/packages/modules/Bluetooth

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13-next:0

Fixed

13-next:2023-06-01

Affected versions

Other

13-next

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32"
    ],
    "severity": "Moderate",
    "types": [
        "ID"
    ],
    "vanir_signatures": [
        {
            "id": "PUB-A-260568367-1e1073e0",
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "166600489234414927719803542116416152193",
                    "291053107770608538701183037602824340574",
                    "301679025544903014566559251547306239965",
                    "247437574063457486823045746346903062022"
                ]
            },
            "deprecated": false,
            "target": {
                "file": "system/test/mock/mock_stack_btm_ble_gap.cc"
            }
        },
        {
            "id": "PUB-A-260568367-22106124",
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "17821528429914078605326521975597115348",
                    "182542015634816505864676955174756430311",
                    "215603146856888871879870246401244182076",
                    "177441206742780684831068774883787682857",
                    "252067795639948791246501240899791737952",
                    "160022688364382390894069908128400789902"
                ]
            },
            "deprecated": false,
            "target": {
                "file": "system/stack/btm/btm_ble_gap.cc"
            }
        },
        {
            "id": "PUB-A-260568367-44558b6b",
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32",
            "signature_type": "Function",
            "digest": {
                "function_hash": "75218390152038561042437374292527415286",
                "length": 2154.0
            },
            "deprecated": false,
            "target": {
                "file": "system/stack/btu/btu_hcif.cc",
                "function": "btu_hcif_hdl_command_complete"
            }
        },
        {
            "id": "PUB-A-260568367-4f7a0b8f",
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32",
            "signature_type": "Function",
            "digest": {
                "function_hash": "60234447814670367646965507424016961150",
                "length": 156.0
            },
            "deprecated": false,
            "target": {
                "file": "system/stack/btm/btm_ble_gap.cc",
                "function": "btm_ble_write_adv_enable_complete"
            }
        },
        {
            "id": "PUB-A-260568367-61513c70",
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "247225448945770413834114022057397005061",
                    "284014206505004169611653158373638260173",
                    "95526860695457897301937684495200759154",
                    "120411400990972863824583791518870048001"
                ]
            },
            "deprecated": false,
            "target": {
                "file": "system/stack/btu/btu_hcif.cc"
            }
        },
        {
            "id": "PUB-A-260568367-c9e2190e",
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/3a9bc45e212a58ce93cdf39a955324a28144ec32",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "188679613354953956492097503756284233815",
                    "298775416198561212439457222143063378775",
                    "155473432610297448654203097183676318276",
                    "288249473609885857912892301994324680310"
                ]
            },
            "deprecated": false,
            "target": {
                "file": "system/stack/include/ble_hci_link_interface.h"
            }
        }
    ],
    "spl": "2023-06-01"
}