{"id":"PUB-A-169328517", "published":"2021-06-01T00:00:00Z", "modified":"2026-04-30T15:48:46.890647439Z", "aliases":["CVE-2021-0540", "A-169328517"], "details":"In halWrapperDataCallback of hal_wrapper.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/hardware/st/nfc", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"11:0"}, {"fixed":"11:2021-06-01"}]}], "versions":["11"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/hardware/st/nfc/+/a009f4e3894f1be5e1786356753b4a51662e17dd"], "severity":"Moderate", "spl":"2021-06-01", "types":["EoP"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"156402217938034955657566084179418192503", "length":8252}, "id":"PUB-A-169328517-8182fa26", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/hardware/st/nfc/+/a009f4e3894f1be5e1786356753b4a51662e17dd", "target":{"file":"st21nfc/hal_wrapper.cc", "function":"halWrapperDataCallback"}}, {"deprecated":false, "digest":{"line_hashes":["3601903727802988883985426624848021982", "228303039871677846233797537348230522257", "284277893623836906015780173768263114448", "92758868853395512953116271879982549087", "2235125378971121113614138669053295544", "12055157359709916415574761842356571803"], "threshold":0.9}, "id":"PUB-A-169328517-d1632530", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/hardware/st/nfc/+/a009f4e3894f1be5e1786356753b4a51662e17dd", "target":{"file":"st21nfc/hal_wrapper.cc"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2021-06-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/hardware/st/nfc/+/a009f4e3894f1be5e1786356753b4a51662e17dd"}]}