Out-of-bounds

In the Android kernel in the vl53L0 driver there is a possible out of bounds write due to a permissions bypass. This could lead to local escalation of privilege due to a setfs call without restoring the previous limit with System execution privileges needed. User interaction is not needed for...

CVE-2019-9454

In the Android kernel in i2c driver there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

Information disclosure

In the Android kernel in VPN routing there is a possible information disclosure. This could lead to remote information disclosure by an adjacent network attacker with no additional execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-2182

In the Android kernel in the kernel MMU code there is a possible execution path leaving some kernel text and rodata pages writable. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9445

In the Android kernel in F2FS driver there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9458

In the Android kernel in the video driver there is a use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9454

In the Android kernel in i2c driver there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9456

In the Android kernel in Pixel C USB monitor driver there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9444

In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9453

In the Android kernel in F2FS touch driver there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

UBUNTU-CVE-2019-9455

In the Android kernel in the video driver there is a kernel pointer leak due to a WARNON statement. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2019-9453

In the Android kernel in F2FS touch driver there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation...

CVE-2019-9456

CVE-2019-9456 stems from the Android kernel Pixel C USB monitor driver. The issue is an out-of-bounds write caused by a missing bounds check in the Pixel C USB monitor driver, enabling local escalation of privilege to System with no user interaction required. This is described in the CVE entry as...

CVE-2019-9454

CVE-2019-9454 affects the Android kernel, specifically the i2c driver, where an out-of-bounds write could corrupt memory. This leads to local escalation of privilege with SYSTEM execution privileges required; no user interaction is needed for exploitation. Public references describe the vulnerabi...

CVE-2019-9447

In the Android kernel in the FingerTipS touchscreen driver there is a possible use-after-free due to improper locking. This could lead to a local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2019-9443

CVE-2019-9443 affects the Android kernel VL53L0 driver. The issue is an out-of-bounds write caused by a permissions bypass in the set_fs path, enabling local elevation of privilege without user interaction. Public exploitation details are not provided in the available documents. The vulnerability...

CVE-2019-9276

CVE-2019-9276 affects the Android kernel’s synaptics_dsx_htc touchscreen driver. It describes a possible out-of-bounds write caused by a use-after-free, enabling local escalation of privilege to SYSTEM without user interaction. Remedies are not detailed in this document, but the Pixel update bull...

CVE-2019-9248

In the Android kernel in the FingerTipS touchscreen driver there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2019-9461

In the Android kernel in VPN routing there is a possible information disclosure. This could lead to remote information disclosure by an adjacent network attacker with no additional execution privileges needed. User interaction is not needed for exploitation...

Google Android Kernel MMU Privilege Vulnerability

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. The Kernel MMU is one of the kernel memory unit management components. An elevation of privilege vulnerability exists in the Kernel MMU component of Android. An attacker can exploit thi...