PUB-A-260569449
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/PUB-A-260569449.json
- JSON Data
- https://api.osv.dev/v1/vulns/PUB-A-260569449
- Aliases
-
- A-260569449
- CVE-2023-20983
- Published
- 2023-06-01T00:00:00Z
- Modified
- 2025-07-02T14:50:29.160629Z
- Summary
- [none]
- Details
-
In btmblerandenccomplete of btm_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/packages/modules/Bluetooth
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5"
],
"spl": "2023-06-01",
"severity": "Moderate",
"vanir_signatures": [
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"file": "system/test/mock/mock_stack_btm_ble.h"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"117784653552321564358471851936625549508",
"47333122460676538759491455797197126117",
"291796459590222092951770975161402356361",
"184229502923043041024834374352615618277",
"279361614689686598980594842686935201696",
"203958438365526106154898523198184834099",
"26190922315788100689696447141390682060",
"245532789990840797891332040715052709773",
"304541487980214799526866154873465333991",
"292658284489376623161506992059026492619"
]
},
"id": "PUB-A-260569449-0a3f5943",
"signature_version": "v1"
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"function": "btm_ble_rand_enc_complete",
"file": "system/test/mock/mock_stack_btm_ble.cc"
},
"deprecated": false,
"digest": {
"length": 178.0,
"function_hash": "12324704330797105710520765979553565911"
},
"id": "PUB-A-260569449-19058196",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"file": "system/stack/include/ble_hci_link_interface.h"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"313371911573586658228018128838215648498",
"4690809711081223181750630714514388859",
"309782683119757118646700257314011791564",
"315315486998765414351497729550439575724"
]
},
"id": "PUB-A-260569449-1ef4f857",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"file": "system/test/mock/mock_stack_btm_ble.cc"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"65326591185155806798731282979164782553",
"190747945663110882946648974928134239695",
"167901755996270072300021354304720775813",
"206977422755948296639786176225388658574",
"22794000547993259028642115759942653687",
"38778571378476974055435767296346293479",
"154015597657473939734559147436263244719"
]
},
"id": "PUB-A-260569449-2faad2e5",
"signature_version": "v1"
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"function": "btu_hcif_hdl_command_complete",
"file": "system/stack/btu/btu_hcif.cc"
},
"deprecated": false,
"digest": {
"length": 2138.0,
"function_hash": "30959802940329759862659041583166081994"
},
"id": "PUB-A-260569449-4630cd0f",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"file": "system/stack/btm/btm_ble.cc"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"80674951492990122575347656846292152695",
"18376419578549212706905165371280563403",
"277048849032806832997747997065648081505",
"332349706291993620572404588489303378896",
"134839501037574561200844653805349984347",
"145246554979485156081978610762041234426",
"107699788049404248499894625830070853182",
"252428581946088468030393579642186282934",
"34091773844244285523001292683419216754",
"50645818859145066048379539153003406511",
"299128413497606640257411112678203106640",
"58252560446575377289715788461584297441",
"131990504168270375025398946880337013710",
"236317222999668950275625605714186850203",
"29887575839910444504096383204803669044",
"5362790294183309087492498058350516606",
"122057933184607078545555076385749223904",
"116544564171286854822026167827041756901",
"114272965988662198401716015210233701914"
]
},
"id": "PUB-A-260569449-5bc73691",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"file": "system/stack/btu/btu_hcif.cc"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"224161529344046936049177692569849198118",
"217438565200487619838275810707526204826",
"111291995599213537043021434985610372809",
"97541988460063341010316638755451632417"
]
},
"id": "PUB-A-260569449-b54bd748",
"signature_version": "v1"
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/678d7b820f377b129dcdbb7d9916a321c25bb7d5",
"target": {
"function": "btm_ble_rand_enc_complete",
"file": "system/stack/btm/btm_ble.cc"
},
"deprecated": false,
"digest": {
"length": 503.0,
"function_hash": "242226141316977193257776497942385063952"
},
"id": "PUB-A-260569449-dc67d6db",
"signature_version": "v1"
}
],
"types": [
"ID"
]
}
Android / platform/packages/modules/Bluetooth
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4"
],
"spl": "2023-06-01",
"severity": "Moderate",
"vanir_signatures": [
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"function": "btm_ble_rand_enc_complete",
"file": "system/stack/btm/btm_ble.cc"
},
"deprecated": false,
"digest": {
"length": 503.0,
"function_hash": "242226141316977193257776497942385063952"
},
"id": "PUB-A-260569449-393ade9b",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"file": "system/stack/btm/btm_ble.cc"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"80674951492990122575347656846292152695",
"18376419578549212706905165371280563403",
"277048849032806832997747997065648081505",
"332349706291993620572404588489303378896",
"134839501037574561200844653805349984347",
"145246554979485156081978610762041234426",
"107699788049404248499894625830070853182",
"252428581946088468030393579642186282934",
"34091773844244285523001292683419216754",
"50645818859145066048379539153003406511",
"299128413497606640257411112678203106640",
"58252560446575377289715788461584297441",
"131990504168270375025398946880337013710",
"236317222999668950275625605714186850203",
"29887575839910444504096383204803669044",
"5362790294183309087492498058350516606"
]
},
"id": "PUB-A-260569449-3c3d19cb",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"file": "system/stack/include/ble_hci_link_interface.h"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"313371911573586658228018128838215648498",
"4690809711081223181750630714514388859",
"309782683119757118646700257314011791564",
"315315486998765414351497729550439575724"
]
},
"id": "PUB-A-260569449-a1cf7028",
"signature_version": "v1"
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"function": "btu_hcif_hdl_command_complete",
"file": "system/stack/btu/btu_hcif.cc"
},
"deprecated": false,
"digest": {
"length": 1979.0,
"function_hash": "235604982423465775564157247840940631481"
},
"id": "PUB-A-260569449-b2e96a75",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"file": "system/test/mock/mock_stack_btm_ble.cc"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"199160796533879904288260927328825862360",
"266122693679987281634444248858300198003",
"167901755996270072300021354304720775813",
"21265372083411862492873215282868325442"
]
},
"id": "PUB-A-260569449-c23552d1",
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"file": "system/stack/btu/btu_hcif.cc"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"224161529344046936049177692569849198118",
"217438565200487619838275810707526204826",
"111291995599213537043021434985610372809",
"289213502808409074465843520373705198312"
]
},
"id": "PUB-A-260569449-cf394c39",
"signature_version": "v1"
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8d52336fe0f6b78d479b9c1a66d2d4e9d71e02b4",
"target": {
"function": "btm_ble_rand_enc_complete",
"file": "system/test/mock/mock_stack_btm_ble.cc"
},
"deprecated": false,
"digest": {
"length": 108.0,
"function_hash": "70860073885811724896504728290542420417"
},
"id": "PUB-A-260569449-cff8ae3d",
"signature_version": "v1"
}
],
"types": [
"ID"
]
}