{"id":"ASB-A-240019719","details":"In fbcon_set_font() of fbcon.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-240019719","CVE-2021-33655"],"modified":"2026-04-03T15:37:31.002635Z","published":"2023-03-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-03-01"},{"type":"FIX","url":"https://android.googlesource.com/kernel/common/+/52833e8fafb2ada5329f89b4e03a838ace0644bd"},{"type":"FIX","url":"https://android.googlesource.com/kernel/common/+/e8a2596dec19b4ed1d9a3b3a0dcc428b0468074a"},{"type":"FIX","url":"https://android.googlesource.com/kernel/common/+/b54f2a0d7bc35bec294c796e5b779a2c960b1145"}],"affected":[{"package":{"name":":linux_kernel:","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":":0"},{"fixed":":2023-03-05"}]}],"versions":["Kernel"],"ecosystem_specific":{"types":["EoP"],"fixes":["https://android.googlesource.com/kernel/common/+/52833e8fafb2ada5329f89b4e03a838ace0644bd","https://android.googlesource.com/kernel/common/+/e8a2596dec19b4ed1d9a3b3a0dcc428b0468074a","https://android.googlesource.com/kernel/common/+/b54f2a0d7bc35bec294c796e5b779a2c960b1145"],"vanir_signatures":[{"digest":{"function_hash":"260368242011700339528141153546759620060","length":2230},"source":"https://android.googlesource.com/kernel/common/+/52833e8fafb2ada5329f89b4e03a838ace0644bd","signature_version":"v1","deprecated":false,"signature_type":"Function","id":"ASB-A-240019719-0d9eea6c","target":{"file":"drivers/video/fbdev/core/fbmem.c","function":"fb_set_var"}},{"digest":{"threshold":0.9,"line_hashes":["220704080036185236950158588689116762957","146819525641386820595486975508173557986","152494364300023753278409797644414637462"]},"source":"https://android.googlesource.com/kernel/common/+/52833e8fafb2ada5329f89b4e03a838ace0644bd","signature_version":"v1","deprecated":false,"signature_type":"Line","id":"ASB-A-240019719-2d935707","target":{"file":"drivers/video/fbdev/core/fbmem.c"}},{"digest":{"threshold":0.9,"line_hashes":["145214828066865294559026777866206346704","74273726301264452381742795473067020242","98584942807167272420032876425097977336"]},"source":"https://android.googlesource.com/kernel/common/+/b54f2a0d7bc35bec294c796e5b779a2c960b1145","signature_version":"v1","deprecated":false,"signature_type":"Line","id":"ASB-A-240019719-602e4306","target":{"file":"drivers/video/fbdev/core/fbcon.c"}},{"digest":{"function_hash":"237877605262909335765337413501427008668","length":2120},"source":"https://android.googlesource.com/kernel/common/+/e8a2596dec19b4ed1d9a3b3a0dcc428b0468074a","signature_version":"v1","deprecated":false,"signature_type":"Function","id":"ASB-A-240019719-8c716c97","target":{"file":"drivers/video/fbdev/core/fbmem.c","function":"do_fb_ioctl"}},{"digest":{"function_hash":"32680718910003695153068326154783534040","length":1635},"source":"https://android.googlesource.com/kernel/common/+/b54f2a0d7bc35bec294c796e5b779a2c960b1145","signature_version":"v1","deprecated":false,"signature_type":"Function","id":"ASB-A-240019719-ba2e9a01","target":{"file":"drivers/video/fbdev/core/fbcon.c","function":"fbcon_set_font"}},{"digest":{"threshold":0.9,"line_hashes":["139595783800889817610535237357284472539","286891797931192681199206635193469849391","189615521132268010970490211699267266912","220804743819273572867304279509796439362","213164206842185859280247276716851666100","15621184755067764871661004093351894155","12003470756970607673472171164672216868","46292734064832699823715455874387192271"]},"source":"https://android.googlesource.com/kernel/common/+/e8a2596dec19b4ed1d9a3b3a0dcc428b0468074a","signature_version":"v1","deprecated":false,"signature_type":"Line","id":"ASB-A-240019719-c650b1fb","target":{"file":"include/linux/fbcon.h"}},{"digest":{"threshold":0.9,"line_hashes":["4805974244079610571020223133689330202","220829309033984216009626881265785601298","78949393936684919963760381278998600401","304463444265663019437793569792849990614"]},"source":"https://android.googlesource.com/kernel/common/+/e8a2596dec19b4ed1d9a3b3a0dcc428b0468074a","signature_version":"v1","deprecated":false,"signature_type":"Line","id":"ASB-A-240019719-f542543f","target":{"file":"drivers/video/fbdev/core/fbmem.c"}}],"spl":"2023-03-05","severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-240019719.json"}}],"schema_version":"1.7.5"}