2 matches found
CVE-2009-0606
The CVE-2009-0606 entry concerns Android 1.0 (Open Handset Alliance) on the T-Mobile G1, where the link_image function in linker/linker.c of Bionic’s dynamic linker mishandles file descriptors 0, 1, and 2 for a setgid program. This behavior could allow local users to create arbitrary files owned ...
CVE-2009-0607
CVE-2009-0607 describes multiple integer overflows in the malloc_leak.c code of Bionic on Android 1.0, related to the functions (1) chk_calloc and (2) leak_calloc. The vulnerability affects the Open Handset Alliance Android 1.0 stack, but explicit impact and attack vectors are not provided in the...