BnGraphicBufferProducer onTransact Function in Mediaserver Vulnerability (CVE-2016-0829)
Schweregrad: : Alto
Identificador(es) CVE: : CVE-2016-0829
Data do informe: 05 abril 2016
Descrição
This vulnerability resides in the BnGraphicBufferProducer::onTransact function in libs/gui/IGraphicBufferConsumer.cpp in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01. It can allow attackers to gather confidential information when successfully exploited.
Trend Micro researcher Peter Pi reported the said vulnerability to Google.