In AnalyzeMfcResp of NxpMfcReader.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-08628712", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-6c8b5605", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-76b70cae", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-bb9dd33f", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c" ], "spl": "2023-05-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-9b45cb74", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/67e1db04f568cf50c90758272ceca93426aba932", "deprecated": false, "signature_version": "v1", "target": { "file": "halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-efd04272", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/67e1db04f568cf50c90758272ceca93426aba932", "deprecated": false, "signature_version": "v1", "target": { "file": "halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/hardware/nxp/nfc/+/67e1db04f568cf50c90758272ceca93426aba932" ], "spl": "2023-05-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-16f7f721", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-1c88b988", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" }, { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-e1952f90", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-ec0f6685", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c" ], "spl": "2023-05-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-3d6c4ce5", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" }, { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-732c92c7", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-9e5854c9", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-f13d3baf", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c" ], "spl": "2023-05-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-4dd0fded", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" }, { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-67c3d35a", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "length": 1390.0, "function_hash": "217768603380171297613270030606270843987" }, "id": "ASB-A-252763983-eaccfcca", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "snxxx/halimpl/mifare/NxpMfcReader.cc", "function": "NxpMfcReader::AnalyzeMfcResp" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "64284978509830298798730183538658890155", "161084689393964153539491505797652199006", "252132195742022893447742066666725943805", "126108868847444204655071566216860054307" ] }, "id": "ASB-A-252763983-f164f37f", "source": "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c", "deprecated": false, "signature_version": "v1", "target": { "file": "pn8x/halimpl/mifare/NxpMfcReader.cc" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/hardware/nxp/nfc/+/69c53a6f1bca6d450e5100c1044114ffad615e5c" ], "spl": "2023-05-01", "severity": "High", "types": [ "ID" ] }