CVE-2019-9472

2020-01-06T18:15:00
ID CVE-2019-9472
Type cve
Reporter cve@mitre.org
Modified 2020-01-09T20:22:00

Description

In DCRYPTO_equals of compare.c, there is a possible timing attack due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-130237611