PUB-A-194696049

See a problem?
Import Source
https://storage.googleapis.com/android-osv-test/PUB-A-194696049.json
JSON Data
https://api.osv.dev/v1/vulns/PUB-A-194696049
Aliases
Published
2021-12-01T00:00:00Z
Modified
2024-09-19T16:28:02.799500Z
Summary
[A user-memory-access problem in ufshcd_eh_device_reset_handler() in the Linux Kernel's SCSI driver subsystem] - KASAN READ?
Details

In ufshcdehdeviceresethandler of ufshcd.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / :linux_kernel:

Package

Name
:linux_kernel:

Affected ranges

Type
ECOSYSTEM
Events
Introduced
:0
Fixed
:2021-12-05

Affected versions

Other

Kernel

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "305346347420555302990032506475500740507",
                    "57146156172964670573879327673475273216",
                    "40554493845984872555023744390808030834",
                    "150782253644258848182730616760848844028",
                    "262024752335588956295697990325079222093",
                    "275943583354906512207834669038274201453",
                    "30331954069471717985910528715156950658",
                    "200641295129981722383875632295382996593",
                    "2431489166792267177929009793294744317",
                    "326795116488284732551327449320521323762",
                    "98396903598544293283499732389198455804",
                    "203426630515740610168080129400124467616",
                    "224952036548519233168464291339186747636",
                    "94772291503982484100251412512207265161",
                    "297084363862851361762562741017211168057",
                    "179843703356585037613524101116147813981",
                    "292282741712125973344533935131065459918",
                    "310750789642628357794818640474394743894"
                ]
            },
            "id": "PUB-A-194696049-9e85d991",
            "source": "https://android.googlesource.com/kernel/common/+/35fc4cd34426c242ab015ef280853b7bff101f48",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "drivers/scsi/ufs/ufshcd.c"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 948.0,
                "function_hash": "68556209577409845507073909729827869540"
            },
            "id": "PUB-A-194696049-e3c45405",
            "source": "https://android.googlesource.com/kernel/common/+/35fc4cd34426c242ab015ef280853b7bff101f48",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "drivers/scsi/ufs/ufshcd.c",
                "function": "ufshcd_eh_device_reset_handler"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/kernel/common/+/35fc4cd34426c242ab015ef280853b7bff101f48"
    ],
    "spl": "2021-12-05",
    "severity": "Moderate",
    "types": [
        "ID"
    ]
}