{"id":"PUB-A-233879420", "published":"2023-06-01T00:00:00Z", "modified":"2026-04-29T15:10:00.007170452Z", "aliases":["CVE-2023-21195", "A-233879420"], "details":"In btm_ble_periodic_adv_sync_tx_rcvd of btm_ble_gap.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure over Bluetooth, if the firmware were compromised with System execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/packages/modules/Bluetooth", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13-next:0"}, {"fixed":"13-next:2023-06-01"}]}], "versions":["13-next"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/modules/Bluetooth/+/a24402da0f0a0d159d5d4ce178a18a2b5556fa3e"], "severity":"Moderate", "spl":"2023-06-01", "types":["ID"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"9734284806166279611532425786886860839", "length":911}, "id":"PUB-A-233879420-65d027f4", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/a24402da0f0a0d159d5d4ce178a18a2b5556fa3e", "target":{"file":"system/stack/btm/btm_ble_gap.cc", "function":"btm_ble_periodic_adv_sync_tx_rcvd"}}, {"deprecated":false, "digest":{"line_hashes":["12180466636009877081140075978036783298", "259494905804513965146537322985086677400", "177546198287980186047177872465296668845", "138319199451196251815562648097894612956"], "threshold":0.9}, "id":"PUB-A-233879420-a354a030", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/a24402da0f0a0d159d5d4ce178a18a2b5556fa3e", "target":{"file":"system/stack/btm/btm_ble_gap.cc"}}]}}, {"package":{"name":"platform/packages/modules/Bluetooth", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2023-06-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/modules/Bluetooth/+/a24402da0f0a0d159d5d4ce178a18a2b5556fa3e"], "severity":"Moderate", "spl":"2023-06-01", "types":["ID"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["12180466636009877081140075978036783298", "259494905804513965146537322985086677400", "177546198287980186047177872465296668845", "138319199451196251815562648097894612956"], "threshold":0.9}, "id":"PUB-A-233879420-64745ecc", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/a24402da0f0a0d159d5d4ce178a18a2b5556fa3e", "target":{"file":"system/stack/btm/btm_ble_gap.cc"}}, {"deprecated":false, "digest":{"function_hash":"9734284806166279611532425786886860839", "length":911}, "id":"PUB-A-233879420-b1b739f9", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/a24402da0f0a0d159d5d4ce178a18a2b5556fa3e", "target":{"file":"system/stack/btm/btm_ble_gap.cc", "function":"btm_ble_periodic_adv_sync_tx_rcvd"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2023-06-01"}]}