libril/RilSapSocket.cpp in Telephony in Android 6.x prior to 2016-10-01 and 7.0 prior to 2016-10-01 relies on variable-length arrays, which allows malicious users to gain privileges via a crafted application, aka internal bug 30202619.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google android 6.0 |
||
google android 7.0 |
||
google android 6.0.1 |