BnGraphicBufferProducer onTransact Function in Mediaserver Vulnerability (CVE-2016-0829)
Schweregrad:: Hoch
CVE Kennungen:: CVE-2016-0829
Hinweisdatum: 05 April 2016
Beschreibung
This vulnerability resides in the BnGraphicBufferProducer::onTransact function in libs/gui/IGraphicBufferConsumer.cpp in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01. It can allow attackers to gather confidential information when successfully exploited.
Trend Micro researcher Peter Pi reported the said vulnerability to Google.