Lucene search

GoogleOSV:ASB-A-230794395

HistoryOct 01, 2022 - 12:00 a.m.

libfdt_fuzzer: Heap-buffer-overflow in fdt_next_tag

2022-10-0100:00:00

Google

osv.dev

libfdt_fuzzer

heap-buffer-overflow

fdt_next_tag

incorrect bounds check

local privilege escalation

system execution privileges

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In fdt_next_tag of fdt.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CPENameOperatorVersion
platform/external/dtceq12L
platform/external/dtceq11
platform/external/dtceq12
platform/external/dtceq10
platform/external/dtceq13

Name	Operator	Version
platform/external/dtc	eq	12L
platform/external/dtc	eq	11
platform/external/dtc	eq	12
platform/external/dtc	eq	10
platform/external/dtc	eq	13

References

android.googlesource.com/platform/external/dtc/+/fba4a44c6f978793fe42ae32434aee1e92f0be7c

source.android.com/security/bulletin/2022-10-01

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for OSV:ASB-A-230794395