logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-20158

Description

In bdi_put and bdi_unregister of backing-dev.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-182815710References: Upstream kernel #### Notes Author| Note ---|--- [amurray](<https://launchpad.net/~amurray>) | Seems to be the same as CVE-2022-20368 [sbeattie](<https://launchpad.net/~sbeattie>) | It seem the android advisory that contains this CVE has been updated to correctly reflect the associated commits with this issue; furthermore, it appears to have been introduced with an android only commit (see lore reference).


Affected Package


OS OS Version Package Name Package Version
ubuntu 22.04 linux-azure-fde any

Related