CVE-2026-23184

In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF in bindernetlinkreport Oneway transactions sent to frozen targets via binderproctransaction return a BRTRANSACTIONPENDINGFROZEN error but they are still treated as successful since the target is expected to thaw a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004408)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004408 advisory. In bindertransaction of binder.c in the Android kernel, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003849)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003849 advisory. In bindertransaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001514)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001514 advisory. In bindertransaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004432)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004432 advisory. In bindertransaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001440)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001440 advisory. In bindertransaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004023)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004023 advisory. In bindertransaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no...

Linux Distros Unpatched Vulnerability : CVE-2019-2214

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In bindertransaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with n...

SUSE CVE-2022-49947

In the Linux kernel, the following vulnerability has been resolved: binder: fix alloc-vmavmmm null-ptr dereference Syzbot reported a couple issues introduced by commit 44e602b4e52f "binderalloc: add missing mmaplock calls when using the VMA", in which we attempt to acquire the mmaplock when...

CVE-2023-20938

In bindertransactionbufferrelease of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2020-0041

In bindertransaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2023-20938

In bindertransactionbufferrelease of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

DEBIAN-CVE-2023-20938

In bindertransactionbufferrelease of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

UBUNTU-CVE-2023-20938

In bindertransactionbufferrelease of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

The vulnerability in the implementation of the binderTransaction() function in Android kernel allows a malicious actor to escalate their privileges.

The vulnerability in the implementation of the binderTransaction function in Android operating system kernels relates to the execution of write operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2020-0041

In bindertransaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

UBUNTU-CVE-2020-0041

In bindertransaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

The vulnerability of the binder Transaction function (binder.c) in the Android operating system’s kernel allows a hacker to execute arbitrary code.

The vulnerability of the binder Transaction function in the Android operating system’s kernel is related to the execution of a transaction outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code within the context of a privileged process...

PT-2019-6115 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to an out-of-bounds write operation in the binder transaction function of the Android kernel. This could allow an attacker to escalate their privileges...

DEBIAN-CVE-2019-2214

In bindertransaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid...