In sdcardfs_create and sdcardfs_mkdir of inode.c, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-111641492 References: N/A
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2018-10-01 | Vendor Advisory |
http://www.securityfocus.com/bid/105483 | Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/45558/ | Exploit Third Party Advisory VDB Entry |
Configurations
Information
Published : 2018-10-02 12:29
Updated : 2019-10-02 17:03
NVD link : CVE-2018-9515
Mitre link : CVE-2018-9515
JSON object : View
CWE
Products Affected
- android