CVE-2023-32865: 
NixOS vulnerability analysis and mitigation

CVE-2023-32865 is a security vulnerability discovered in MediaTek's display DRM component. The vulnerability was disclosed in December 2023 and affects multiple MediaTek chipsets running Android 12.0 and 13.0. The issue involves an out-of-bounds write vulnerability due to an incorrect bounds check (MediaTek Bulletin).

The vulnerability is classified as a medium severity issue with a CVSS v3.1 base score of 6.7 (MEDIUM). It is categorized as CWE-787 (Out-of-bounds Write) and requires system execution privileges for exploitation. The vulnerability exists in the display DRM component where an incorrect bounds check could lead to an out-of-bounds write condition (NVD).

If exploited, this vulnerability could lead to local escalation of privilege with System execution privileges. The attack requires local access to the device but does not need user interaction for exploitation (MediaTek Bulletin).

MediaTek has addressed this vulnerability and provided security patches to device OEMs. The affected chipsets include MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6983, MT6985, MT8168, and MT8781 running Android 12.0 and 13.0 (MediaTek Bulletin).