Product:

Android

(Google)
Repositories https://github.com/torvalds/linux
#Vulnerabilities 6982
Date Id Summary Products Score Patch Annotated
2024-10-25 CVE-2024-47041 In valid_address of syscall.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Android 7.8
2024-10-25 CVE-2024-47035 In vring_init of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Android 7.8
2024-10-25 CVE-2024-47017 In ufshc_scsi_cmd of ufs.c, there is a possible stack variable use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Android 7.8
2024-10-25 CVE-2024-47018 In pmucal_rae_handle_seq_int of flexpmu_cal_rae.c, there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Android 5.5
2024-10-25 CVE-2024-47019 In ProtocolEmbmsSaiListAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation. Android 5.5
2024-10-25 CVE-2024-47020 Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ABL component, A-331966488. Android 7.5
2024-10-25 CVE-2024-47021 In sms_ExtractCbLanguage of sms_CellBroadcast.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Android 7.5
2024-10-25 CVE-2024-47022 Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656. Android 7.5
2024-10-25 CVE-2024-47023 there is a possible man-in-the-middle attack due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Android 8.1
2024-10-25 CVE-2024-47024 In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Android 7.8