CVE-2022-20366

In ioctldpmclkupdate of lwisioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2022-20367

In constructtransaction of lwisioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

PT-2022-14593 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write due to an integer overflow in the construct transaction function of lwis ioctl.c. This could lead to local escalation of privilege in the kernel, requiring...

Google Android 输入验证错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An elevation-of-privilege vulnerability exists in Google Android, which stems from an override in lwisioctl.c and lwisperiodicio.c's prepareioentry and prepareresponse due to an integer overflow. An attacker could...