In nfconntrackhelperq931 of nfconntrackh323main.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not required for exploitation.
{ "spl": "2021-06-05", "severity": "High", "types": [ "EoP" ], "vanir_signatures": [ { "signature_version": "v1", "target": { "file": "net/netfilter/nf_conntrack_h323_main.c" }, "deprecated": true, "id": "ASB-A-174904512-6b5e7136", "source": "https://android.googlesource.com/kernel/common/+/396ba2fc4f27ef6c44bbc0098bfddf4da76dc4c9", "signature_type": "Line", "digest": { "line_hashes": [ "236472113983263375503750682828725632157", "137951220192068196162866587713860893203", "67740364489710039005149358498670798563", "224464401093644057874143499389546186097" ], "threshold": 0.9 } } ], "fixes": [ "https://android.googlesource.com/kernel/common/+/396ba2fc4f27ef6c44bbc0098bfddf4da76dc4c9" ] }