CVE Vulnerabilities

CVE-2011-1823

Published: Jun 09, 2011 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are received from a PF_NETLINK socket, which allows local users to execute arbitrary code and gain root privileges via a negative index that bypasses a maximum-only signed integer check in the DirectVolume::handlePartitionAdded method, which triggers memory corruption, as demonstrated by Gingerbreak.

Affected Software

Name Vendor Start Version End Version
Android Google 2.2.3 2.2.3
Android Google 2.1 2.1
Android Google 2.3 2.3
Android Google 2.3.3 2.3.3
Android Google 3.0 3.0
Android Google 2.3.1 2.3.1
Android Google 2.2.1 2.2.1
Android Google 2.2.2 2.2.2
Android Google 2.2 2.2
Android Google 2.2 2.2
Android Google 2.3.2 2.3.2

References