Описание
In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-254837884References: Upstream kernel
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| linux | fixed | 5.19.6-1 | package | |
| linux | fixed | 5.10.158-1 | bullseye | package |
| linux | not-affected | buster | package |
Примечания
https://android.googlesource.com/kernel/common/+/201d5f4a3ec1
https://source.android.com/docs/security/bulletin/2023-01-01
https://bugs.chromium.org/p/project-zero/issues/detail?id=2374
EPSS
Связанные уязвимости
In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-254837884References: Upstream kernel
In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-254837884References: Upstream kernel
In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-254837884References: Upstream kernel
Уязвимость компонента binder.c ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии
EPSS