CVE-2024-0030: 
NixOS vulnerability analysis and mitigation

In btif_to_bta_response of btif_gatt_util.cc, there is a possible out of bounds read vulnerability due to an incorrect bounds check. This vulnerability affects Android versions 11.0 through 14.0. The issue was discovered in April 2023 and publicly disclosed in February 2024 (NVD, CVE).

The vulnerability stems from a size mismatch in the btif_to_bta_response function. The size of p_src->attr_value.value is dependent on p_src->attr_value.len, but the function always copies GATT_MAX_ATTR_LEN bytes to p_dest->attr_value.value, potentially resulting in an out-of-bounds read. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (Medium) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N (NVD).

This vulnerability could lead to local information disclosure with no additional execution privileges needed. User interaction is not required for exploitation (NVD).

A fix has been implemented in the Android source code repository through a commit that addresses the out-of-bounds bug in btif_to_bta_response and attp_build_value_cmd functions. The fix ensures proper size checking when copying attribute values (Android Source).