BnGraphicBufferProducer onTransact Function in Mediaserver Vulnerability (CVE-2016-0829)
Gravedad: High
Identificadores de CVE : CVE-2016-0829
Fecha recomendada: 05 de abril de 2016
Descripción
This vulnerability resides in the BnGraphicBufferProducer::onTransact function in libs/gui/IGraphicBufferConsumer.cpp in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01. It can allow attackers to gather confidential information when successfully exploited.
Trend Micro researcher Peter Pi reported the said vulnerability to Google.