[PATCH 0/2] [SRU f/linux-oem-5.6] CVE-2020-0465
Tim Gardner
tim.gardner at canonical.com
Mon Mar 8 20:05:56 UTC 2021
[Impact]
In various methods of hid-multitouch.c, there is a possible out of bounds write
due to a missing bounds check. This could lead to local escalation of privilege
with no additional execution privileges needed. User interaction is not needed
for exploitation.Product: AndroidVersions: Android kernelAndroid
ID: A-162844689References: Upstream kernel
[Test Case]
None
[Potential regression]
This patch has been released in linux-4.4.y, linux-4.9.y, linux-4.14.y,
linux-4.19.y, linux-5.4.y, linux-5.8.y, and linux-5.9.y
More information about the kernel-team
mailing list