CVE-2022-20156

In unflatten of GraphicBuffer.cpp, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

Vulnerability of the GraphicBuffer::unflatten() function in the Android operating system, allowing attackers to escalate their privileges

The vulnerability of the GraphicBuffer::unflatten function in the Android operating system is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain increased privileges...

CVE-2018-9547

In unflatten of GraphicBuffer.cpp, there is a possible bad fd close due to improper input validation. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:...

Android 'GraphicBuffer::unflatten' function integer overflow vulnerability

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. An integer overflow exists in the 'GraphicBuffer::unflatten' function in the platform/frameworks/native/libs/ui/GraphicBuffer.cpp file in Android 5.0 and earlier versions. vulnerabilit...

Android Integer Overflow Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An integer overflow exists in the 'GraphicBuffer::unflatten' function in the platform/frameworks/native/libs/ui/GraphicBuffer.cpp file in Android 5.0 and earlier versions...