TrustZone Access Control Bypass Vulnerability in Android CAF Releases
CVE-2016-10239 · HIGH Severity
AV:N/AC:M/AU:N/C:C/I:C/A:C
In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.