CVE-2021-39726

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to an incorrect bounds check in the cd ParseMsg function of cd codec.c, which could lead to a possible out of bounds read. This might result in remote information disclosure without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android kernel, consider applying a patch that fixes the incorrect bounds check in the cd ParseMsg function of cd codec.c as a permanent solution. As a temporary workaround, restrict access to the cd codec.c module to minimize the risk of exploitation.