VDB
PUB-A-186337918
PUB-A-186337918
PUBLISHED
CVSS 6.900000095367432 MEDIUM
In several functions of verifier.c, there is a possible way to disclose kernel memory due to side channel information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS v4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | :linux_kernel: | :0, Kernel, Kernel |
Timeline
- Oct 1, 2021 CVE Published
- May 15, 2026 CVE Updated
References
- https://source.android.com/security/bulletin/2021-10-01 advisory
- https://android.googlesource.com/kernel/common/+/9601148392520e2e134936e76788fc2a6371e7be patch
- https://android.googlesource.com/kernel/common/+/6f55b2f2a1178856c19bbce2f71449926e731914 patch
- https://android.googlesource.com/kernel/common/+/24c109bb1537c12c02aeed2d51a347b4d6a9b76e patch
- https://android.googlesource.com/kernel/common/+/b658bbb844e28f1862867f37e8ca11a8e2aa94a3 patch
- https://android.googlesource.com/kernel/common/+/a6aaece00a57fa6f22575364b3903dfbccf5345d patch
- https://android.googlesource.com/kernel/common/+/073815b756c51ba9d8384d924c5d1c03ca3d1ae4 patch
- https://android.googlesource.com/kernel/common/+/f528819334881fd622fdadeddb3f7edaed8b7c9b patch
- https://android.googlesource.com/kernel/common/+/7fedb63a8307dda0ec3b8969a3b233a1dd7ea8e0 patch