In dispatchGraphTerminationMessage() of packages/services/Car/computepipe/runner/graph/StreamSetObserver.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Android ID: A-170407229.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/security/bulletin/2021-01-01 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2021-01-11T21:48:20
Updated: 2024-08-03T15:32:10.581Z
Reserved: 2020-11-06T00:00:00
Link: CVE-2021-0303
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-01-11T22:15:12.987
Modified: 2021-01-13T15:23:00.173
Link: CVE-2021-0303
Redhat
No data.