CVE-2022-20108

In voice service, there is a possible out of bounds write due to a stack-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330702; Issue ID: DTV03330702.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
OR cpe:2.3:h:mediatek:mt9011:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9215:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9216:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9220:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9221:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9255:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9256:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9266:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9269:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9285:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9286:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9288:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9600:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9602:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9610:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9611:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9612:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9613:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9615:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9617:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9629:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9630:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9631:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9632:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9636:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9638:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9639:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9650:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9652:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9666:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9669:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9670:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9675:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9685:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9686:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9688:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.19:*:*:*:*:*:*:*
OR cpe:2.3:h:mediatek:mt9011:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9215:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9216:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9220:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9221:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9255:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9256:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9266:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9269:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9285:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9286:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9288:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9600:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9602:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9610:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9611:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9612:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9613:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9615:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9617:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9629:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9630:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9631:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9632:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9636:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9638:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9639:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9650:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9652:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9666:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9669:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9670:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9675:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9685:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9686:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt9688:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:42

Type Values Removed Values Added
References () https://corp.mediatek.com/product-security-bulletin/May-2022 - Vendor Advisory () https://corp.mediatek.com/product-security-bulletin/May-2022 - Vendor Advisory

Information

Published : 2022-05-03 21:15

Updated : 2024-11-21 06:42


NVD link : CVE-2022-20108

Mitre link : CVE-2022-20108

CVE.ORG link : CVE-2022-20108


JSON object : View

Products Affected

mediatek

  • mt9215
  • mt9285
  • mt9631
  • mt9266
  • mt9221
  • mt9666
  • mt9615
  • mt9669
  • mt9256
  • mt9632
  • mt9286
  • mt9612
  • mt9611
  • mt9216
  • mt9670
  • mt9686
  • mt9011
  • mt9685
  • mt9688
  • mt9613
  • mt9269
  • mt9638
  • mt9675
  • mt9255
  • mt9600
  • mt9629
  • mt9630
  • mt9288
  • mt9220
  • mt9617
  • mt9650
  • mt9636
  • mt9652
  • mt9639
  • mt9610
  • mt9602

google

  • android

linux

  • linux_kernel
CWE
CWE-787

Out-of-bounds Write