TrustZone Access Control Bypass Vulnerability in Android CAF Releases

TrustZone Access Control Bypass Vulnerability in Android CAF Releases

CVE-2016-10239 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.