APPLIED: [Disco][SRU][CVE-2019-2181] binder: check for overflow when alloc for security context
Khaled Elmously
khalid.elmously at canonical.com
Mon Sep 30 04:22:59 UTC 2019
On 2019-09-26 12:14:46 , Connor Kuehl wrote:
> https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-2181.html
>
> From the above link:
>
> "In binder_transaction of binder.c in the Android kernel, there is a
> possible out of bounds write due to an integer overflow. This could lead to
> local escalation of privilege with no additional execution privileges
> needed. User interaction is needed for exploitation."
>
> Clean cherry pick.
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list