Multiple integer overflows in the GraphicBuffer::unflatten function in platform/frameworks/native/libs/ui/GraphicBuffer.cpp in Android up to and including 5.0 allow malicious users to gain privileges or cause a denial of service (memory corruption) via vectors that trigger a large number of (1) file descriptors or (2) integer values.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google android |