CVE-2021-39724

CVE-2021-39724 is an Android/kernel issue: in TuningProviderBase::GetTuningTreeSet there is an out-of-bounds read due to a missing bounds check. This can enable local information disclosure with system privileges required. The vulnerability affects the Android kernel via tuning_provider_base.cc a...

CVE-2021-39719

In lwistopregisterio of lwisdevicetop.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

CVE-2021-39719

CVE-2021-39719 affects the Android kernel, specifically the lwis subsystem (lwis_top_register_io in lwis_device_top.c). The issue is described as a possible out-of-bounds write caused by an integer overflow, leading to local elevation of privilege with System execution privileges required. User i...

CVE-2021-39718

CVE-2021-39718 concerns the Android kernel component ProtocolStkProactiveCommandAdapter (file protocolstkadapter.cpp). A possible out-of-bounds write caused by an incorrect bounds check is reported, which could enable local escalation of privilege with System execution privileges needed. Exploita...

CVE-2021-39718

In ProtocolStkProactiveCommandAdapter::Init of protocolstkadapter.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2021-39715

In showregs of process.c, there is a possible leak of kernel memory and addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2021-39714

In ionbufferkmapget of ion.c, there is a possible use-after-free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2021-39714

CVE-2021-39714 affects the Ion Memory Manager in the Linux kernel used by Android. The issue in the function ion_buffer_kmap_get can cause a use-after-free due to an integer overflow, leading to local elevation of privilege with no user interaction. Impact is described as partial to high (per CVE...

CVE-2021-39711

In bpfprogtestrunskb of testrun.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2021-39711

In bpfprogtestrunskb of testrun.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2021-39711

The CVE-2021-39711 entry concerns the Linux kernel (Android kernel variant in the initial report) with a vulnerability in bpf_prog_test_run_skb() in test_run.c. The root cause is an out-of-bounds read due to an Incorrect Size Value, which can lead to local information disclosure and potentially p...

PT-2022-10994 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a possible leak of kernel memory and addresses due to log information disclosure in the show regs function of process.c. This could lead to local...

PT-2022-4300

Name of the Vulnerable Software and Affected Versions Android kernel Description The issue is related to a function kbase jd user buf pin pages in mali kbase mem.c, which is part of the graphics processor driver in Android operating system for Google Pixel devices. It involves an out-of-bounds...

CVE-2021-39793

In kbasejduserbufpinpages of malikbasemem.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

PT-2022-4284 · Google +1 · Android Kernel +1

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a possible out of bounds read in the bpf prog test run skb function of test run.c due to an incorrect size value. This could lead to local informatio...

PT-2022-10991 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible user after free vulnerability due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for...

PT-2022-1373 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to an integer overflow in the rndis set response function of the rndis.c file, which could lead to a local escalation of privilege. This can occur if a...

PT-2022-10993 · Google +1 · Android Kernel +1

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a possible use-after-free due to an integer overflow in the ion buffer kmap get function of ion.c. This could lead to local escalation of privilege...

PT-2022-10992 · Google +2 · Android Kernel +2

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue concerns the Android kernel. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world...

Google Android 竞争条件问题漏洞

Google Android is a Linux-based open source operating system from Google Inc. in the United States. A security vulnerability exists in the Kernel components Kernel in Google Android. There is no information about this vulnerability yet, please stay tuned to CNNVD or the vendor's announcement...