CVE-2021-0901: 
NixOS vulnerability analysis and mitigation

In apusys, there is a possible memory corruption due to a missing bounds check. This vulnerability (CVE-2021-0901) was discovered and disclosed in December 2021. The vulnerability affects MediaTek chipsets including MT6873, MT6875, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8195, MT8791, and MT8797 running Android versions 10.0, 11.0, and 12.0 (MediaTek Bulletin).

The vulnerability is classified as a medium severity issue with a CWE-190 (Integer Overflow or Wraparound) designation. The vulnerability exists in the apusys component and could lead to memory corruption due to insufficient bounds checking. The vulnerability requires System execution privileges for exploitation and does not require user interaction (MediaTek Bulletin).

If exploited, this vulnerability could lead to local escalation of privilege with System execution privileges needed. The vulnerability could potentially allow an attacker to gain elevated system privileges through memory corruption (MediaTek Bulletin).

MediaTek has released security patches for this vulnerability and notified device OEMs of the issue at least two months before publication. Users should ensure their devices are updated with the latest security patches provided by their device manufacturers (MediaTek Bulletin).