Out-of-Bounds Write Vulnerability in alarm_ready_generic of alarm.cc

Out-of-Bounds Write Vulnerability in alarm_ready_generic of alarm.cc

CVE-2017-13272 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In alarm_ready_generic of alarm.cc, there is a possible out of bounds write due to a use after free. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-67110137.

Learn more about our Cis Benchmark Audit For Google Android.