{"id":"PUB-A-245517503", "published":"2023-06-01T00:00:00Z", "modified":"2026-04-30T15:48:46.890647439Z", "aliases":["CVE-2023-21198", "A-245517503"], "details":"In remove_sdp_record of btif_sdp_server.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/packages/modules/Bluetooth", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13-next:0"}, {"fixed":"13-next:2023-06-01"}]}], "versions":["13-next"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/modules/Bluetooth/+/b9a94d52c59f55318e7a7d0d5f199e4a633a7782"], "severity":"Moderate", "spl":"2023-06-01", "types":["ID"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["234577341053979416166348750032160090373", "182739720076160360690039348437213757437", "223546810899335391801317515885637318194"], "threshold":0.9}, "id":"PUB-A-245517503-8a9c91d9", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/b9a94d52c59f55318e7a7d0d5f199e4a633a7782", "target":{"file":"system/btif/src/btif_sdp_server.cc"}}, {"deprecated":false, "digest":{"function_hash":"69317374448281767407281703466273494736", "length":877}, "id":"PUB-A-245517503-d71ae8b1", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/b9a94d52c59f55318e7a7d0d5f199e4a633a7782", "target":{"file":"system/btif/src/btif_sdp_server.cc", "function":"remove_sdp_record"}}]}}, {"package":{"name":"platform/packages/modules/Bluetooth", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2023-06-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/modules/Bluetooth/+/b9a94d52c59f55318e7a7d0d5f199e4a633a7782"], "severity":"Moderate", "spl":"2023-06-01", "types":["ID"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"69317374448281767407281703466273494736", "length":877}, "id":"PUB-A-245517503-05a52aa1", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/b9a94d52c59f55318e7a7d0d5f199e4a633a7782", "target":{"file":"system/btif/src/btif_sdp_server.cc", "function":"remove_sdp_record"}}, {"deprecated":false, "digest":{"line_hashes":["234577341053979416166348750032160090373", "182739720076160360690039348437213757437", "223546810899335391801317515885637318194"], "threshold":0.9}, "id":"PUB-A-245517503-7e719c07", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/b9a94d52c59f55318e7a7d0d5f199e4a633a7782", "target":{"file":"system/btif/src/btif_sdp_server.cc"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2023-06-01"}]}