2 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-50240
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the mmaplock for later use. This is unsafe and there are a number ...
CVE-2022-50240
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap In commit 720c24192404 "ANDROID: binder: change downwrite to downread" binder assumed the mmap read lock is sufficient to protect alloc-vma inside binderupdatepagerange. This used ...