BnGraphicBufferProducer onTransact Function in Mediaserver Vulnerability (CVE-2016-0829)
Severity: : High
CVE Kennungen: : CVE-2016-0829
Advisory Date: 05 de апреля de 2016
DESCRIPTION
This vulnerability resides in the BnGraphicBufferProducer::onTransact function in libs/gui/IGraphicBufferConsumer.cpp in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01. It can allow attackers to gather confidential information when successfully exploited.
Trend Micro researcher Peter Pi reported the said vulnerability to Google.