In qrtr_recvmsg of qrtr.c, there is a possible leak of kernel memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "severity": "High", "spl": "2021-10-05", "fixes": [ "https://android.googlesource.com/kernel/common/+/50535249f624d0072cd885bcdce4e4b6fb770160" ], "types": [ "ID" ], "vanir_signatures": [ { "signature_version": "v1", "signature_type": "Function", "digest": { "function_hash": "326237298902944552711085178252159586240", "length": 942.0 }, "id": "ASB-A-184622099-835de786", "target": { "function": "qrtr_recvmsg", "file": "net/qrtr/qrtr.c" }, "deprecated": false, "source": "https://android.googlesource.com/kernel/common/+/50535249f624d0072cd885bcdce4e4b6fb770160" }, { "signature_version": "v1", "signature_type": "Line", "digest": { "line_hashes": [ "317345086463415370419056847029360287829", "85218780793221698087756109282893696768", "99207985601674004456791158284153340524", "123088985098890995454573551005234539733" ], "threshold": 0.9 }, "id": "ASB-A-184622099-bb2d91d6", "target": { "file": "net/qrtr/qrtr.c" }, "deprecated": false, "source": "https://android.googlesource.com/kernel/common/+/50535249f624d0072cd885bcdce4e4b6fb770160" } ] }