Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257685302References: Upstream kernel
No PoCs from references.
- https://github.com/0xor0ne/awesome-list
- https://github.com/Clock-Skew/EndPointX
- https://github.com/IamAlch3mist/Awesome-Android-Vulnerability-Research
- https://github.com/Jalexander798/JA_Tools-Cybersecurity-Resource-2
- https://github.com/anansi2safe/CVE-2023-20938
- https://github.com/b1tg/notes
- https://github.com/bachkhoasoft/awesome-list-ks
- https://github.com/deveshroy11/Binder_UAF
- https://github.com/google/vanir
- https://github.com/suddenabnormalsecrets/vanir
- https://github.com/sunofva/FosterFix
- https://github.com/tanjiti/sec_profile
- https://github.com/xairy/linux-kernel-exploitation