Race condition vulnerability in easelcomm_hw_build_scatterlist in Android kernel allows local attackers to escalate privileges via an out-of-bounds write.

Race condition vulnerability in easelcomm_hw_build_scatterlist in Android kernel allows local attackers to escalate privileges via an out-of-bounds write.

CVE-2018-9519 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

In easelcomm_hw_build_scatterlist, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System privileges required. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-69808833.

Learn more about our Cis Benchmark Audit For Google Android.