{"id":"PUB-A-199680600", "published":"2021-12-01T00:00:00Z", "modified":"2026-07-03T16:08:45.503432344Z", "aliases":["CVE-2021-0976", "A-199680600"], "details":"In toBARK of floor0.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.", "affected":[{"package":{"name":"platform/external/tremolo", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"12:0"}, {"fixed":"12:2021-12-01"}]}], "versions":["12"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6"], "severity":"Moderate", "spl":"2021-12-01", "types":["ID"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["59814497835580148945611152291447080798", "59222868345568394881679881456526728062", "327123764676316284280997891129306969048", "310596693034273193161968879394180992092", "102013081266496155175289100218860879710", "261432765872026087410023367465826721598", "158102761263987004879284871189691750194", "22973856383150291006664216045059137597", "90967728165177659703225255217198863725", "23258736729046705785773523709273533401", "19962664516263339246244961524114140952", "20473758836815840744504536365862021305", "115598465938392886496054463110745890830", "65071048096198182303191875267649971926", "138132548116636708575717343582453866871", "219390328297744029839353756239053407943", "268903528114227592080888517772018697484", "275173558937614824776936746776698544394", "265129186455283899990340068847358550937", "320432059702353801567135996484197429338", "57584558512179362305791220866959624466", "251846997660083456570648292230490526674", "78521668697906284040513749670165240644", "45181652765866960198281755016139135887", "137870592998838758491640089117655567837", "320957546353454618615222493586069651131", "322133960457728034670440798308516379121", "143625966209777607134828368074803751976", "333955587058621585562011235326280360213", "228638514449322436122449998239814913205"], "threshold":0.9}, "id":"PUB-A-199680600-082a9512", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6", "target":{"file":"Tremolo/floor0.c"}}, {"deprecated":false, "digest":{"function_hash":"261630653441592833805222842496155440021", "length":351}, "id":"PUB-A-199680600-3e04ed04", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6", "target":{"file":"Tremolo/floor0.c", "function":"toBARK"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2021-12-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/external/tremolo/+/6a5cf79d1ab32f7121b87268ff90372309ba95a6"}]}