CVE-2024-20819: 
NixOS vulnerability analysis and mitigation

Out-of-bounds Write vulnerabilities in svc1td_vld_plh_ap of libsthmbc.so prior to SMR Feb-2024 Release 1 allows local attackers to trigger buffer overflow. The vulnerability was discovered and reported on February 5, 2024, affecting Samsung Android devices running versions 11.0 and above (NVD, Samsung Mobile).

The vulnerability is classified as an Out-of-bounds Write (CWE-787) issue in the svc1td_vld_plh_ap component of libsthmbc.so library. It has received a CVSS v3.1 base score of 7.8 (HIGH) from NIST with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, while Samsung Mobile assessed it with a score of 6.6 (MEDIUM) and vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L (NVD).

If exploited, this vulnerability could allow local attackers to trigger buffer overflow, potentially leading to arbitrary code execution with elevated privileges. The impact is considered high due to the potential for complete compromise of confidentiality, integrity, and availability of the affected system (NVD).

Samsung has addressed this vulnerability in the February 2024 Security Maintenance Release (SMR Feb-2024 Release 1). Users are advised to update their devices to the latest available security patch to protect against this vulnerability (Samsung Mobile).