In all Android releases from CAF using the Linux kernel, the Hypervisor API could be misused to bypass authentication.
google android