In binderallocfreepage of binderalloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-120025196.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "crypto-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-hwe-edge-udebs-generic": "5.0.0-15.16~18.04.1", "fat-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "ppp-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "md-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "multipath-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-hwe-edge-cloud-tools-5.0.0-15": "5.0.0-15.16~18.04.1", "linux-headers-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "linux-buildinfo-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "nic-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "multipath-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-buildinfo-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "linux-image-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "parport-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "nic-shared-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-headers-5.0.0-15": "5.0.0-15.16~18.04.1", "nic-pcmcia-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-image-unsigned-5.0.0-15-generic-dbgsym": "5.0.0-15.16~18.04.1", "mouse-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "scsi-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "pata-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-source-5.0.0": "5.0.0-15.16~18.04.1", "nic-shared-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "scsi-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "parport-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-image-5.0.0-15-generic-lpae-dbgsym": "5.0.0-15.16~18.04.1", "linux-modules-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "input-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "usb-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "plip-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "fs-core-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "block-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "fs-secondary-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "fs-secondary-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "sata-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-image-5.0.0-15-lowlatency-dbgsym": "5.0.0-15.16~18.04.1", "dasd-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-cloud-tools-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "kernel-image-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "block-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-buildinfo-5.0.0-15-generic-lpae": "5.0.0-15.16~18.04.1", "ipmi-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-tools-5.0.0-15-generic-lpae": "5.0.0-15.16~18.04.1", "pcmcia-storage-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "plip-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "input-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-tools-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "kernel-image-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "nic-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "ipmi-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-modules-5.0.0-15-generic-lpae": "5.0.0-15.16~18.04.1", "linux-headers-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "message-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-headers-5.0.0-15-generic-lpae": "5.0.0-15.16~18.04.1", "serial-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-hwe-edge-udebs-generic-lpae": "5.0.0-15.16~18.04.1", "firewire-core-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "md-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "mouse-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "vlan-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "vlan-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-hwe-edge-tools-5.0.0-15": "5.0.0-15.16~18.04.1", "pcmcia-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-image-unsigned-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "storage-core-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "storage-core-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-tools-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "nic-usb-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "nfs-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-modules-extra-5.0.0-15-generic": "5.0.0-15.16~18.04.1", "virtio-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "ppp-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "sata-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "fs-core-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "dasd-extra-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "floppy-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-image-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "linux-image-unsigned-5.0.0-15-lowlatency-dbgsym": "5.0.0-15.16~18.04.1", "linux-image-5.0.0-15-generic-dbgsym": "5.0.0-15.16~18.04.1", "usb-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "linux-modules-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "crypto-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-image-5.0.0-15-generic-lpae": "5.0.0-15.16~18.04.1", "linux-cloud-tools-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "nfs-modules-5.0.0-15-generic-lpae-di": "5.0.0-15.16~18.04.1", "nic-usb-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "linux-image-unsigned-5.0.0-15-lowlatency": "5.0.0-15.16~18.04.1", "fat-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1", "fb-modules-5.0.0-15-generic-di": "5.0.0-15.16~18.04.1" } ] }