CVE-2021-3675

Name of the Vulnerable Software and Affected Versions Synaptics Fingerprint Driver versions 5.1.xxx.26 prior to xxx=340 on x86/64 Synaptics Fingerprint Driver versions 5.2.xxxx.26 prior to xxxx=3541 on x86/64 Synaptics Fingerprint Driver versions 5.2.2xx.26 prior to xx=29 on x86/64 Synaptics Fingerprint Driver versions 5.2.3xx.26 prior to xx=25 on x86/64 Synaptics Fingerprint Driver versions 5.3.xxxx.26 prior to xxxx=3543 on x86/64 Synaptics Fingerprint Driver versions 5.5.xx.1058 prior to xx=44 on x86/64 Synaptics Fingerprint Driver versions 5.5.xx.1102 prior to xx=34 on x86/64 Synaptics Fingerprint Driver versions 5.5.xx.1116 prior to xx=14 on x86/64 Synaptics Fingerprint Driver versions 6.0.xx.1104 prior to xx=50 on x86/64 Synaptics Fingerprint Driver versions 6.0.xx.1108 prior to xx=31 on x86/64 Synaptics Fingerprint Driver versions 6.0.xx.1111 prior to xx=58 on x86/64

Description The issue is related to improper input validation in the synaTEE.signed.dll library of the Synaptics Fingerprint Driver, which may allow a local authorized attacker to overwrite a heap tag, potentially leading to a loss of confidentiality.

Recommendations For Synaptics Fingerprint Driver versions 5.1.xxx.26 prior to xxx=340 on x86/64, update to a version where xxx is 340 or later. For Synaptics Fingerprint Driver versions 5.2.xxxx.26 prior to xxxx=3541 on x86/64, update to a version where xxxx is 3541 or later. For Synaptics Fingerprint Driver versions 5.2.2xx.26 prior to xx=29 on x86/64, update to a version where xx is 29 or later. For Synaptics Fingerprint Driver versions 5.2.3xx.26 prior to xx=25 on x86/64, update to a version where xx is 25 or later. For Synaptics Fingerprint Driver versions 5.3.xxxx.26 prior to xxxx=3543 on x86/64, update to a version where xxxx is 3543 or later. For Synaptics Fingerprint Driver versions 5.5.xx.1058 prior to xx=44 on x86/64, update to a version where xx is 44 or later. For Synaptics Fingerprint Driver versions 5.5.xx.1102 prior to xx=34 on x86/64, update to a version where xx is 34 or later. For Synaptics Fingerprint Driver versions 5.5.xx.1116 prior to xx=14 on x86/64, update to a version where xx is 14 or later. For Synaptics Fingerprint Driver versions 6.0.xx.1104 prior to xx=50 on x86/64, update to a version where xx is 50 or later. For Synaptics Fingerprint Driver versions 6.0.xx.1108 prior to xx=31 on x86/64, update to a version where xx is 31 or later. For Synaptics Fingerprint Driver versions 6.0.xx.1111 prior to xx=58 on x86/64, update to a version where xx is 58 or later.