Security Advisory

CVE-2015-8950

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-10-10 10:00:00

Last updated 2024-08-06 08:36:30

Assigner google_android

State PUBLISHED

Description

arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory by triggering a dma_mmap call.

← Browse all CVEs View on cve.org ↗