Flanker

**Nome do software vulnerável e versões afetadas: Versões do Samsung Notes anteriores à 4.3.02.61 Descrição: Uma possível falha de estouro de buffer na biblioteca libSPenBase permite a execução de código arbitrário. Recomendações: Para versões anteriores à 4.3.02.61, atualize para a versão 4.3.02.61 ou posterior para resolver o problema.

**Nome do software vulnerável e versões afetadas: Versões do Samsung Notes anteriores à 4.3.02.61 Descrição: Uma possível vulnerabilidade de estouro de buffer de heap na biblioteca libSPenBase permite a execução de código arbitrário. Recomendações: Para versões anteriores à 4.3.02.61, atualize para a versão 4.3.02.61 ou posterior para resolver o problema.

**Name of the Vulnerable Software and Affected Versions** Android versions 5.x **Description** The issue is related to insufficient access control in the PowerNotificationWarnings.java file, allowing attackers to bypass the DEVICE POWER permission requirement. This can be achieved by sending a broadcast intent with the `PNW.stopSaver` action. There is no information about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** For Android version 5.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Android versions prior to 5.1.1 LMY48Z Android versions prior to 6.0 2015-12-01 **Description** The issue is related to insufficient access control in the Android operating system. It allows attackers to gain privileges via a crafted application, potentially obtaining Signature or SignatureOrSystem access. This can be exploited by a remote attacker to elevate their privileges. **Recommendations** For Android versions prior to 5.1.1 LMY48Z, update to version 5.1.1 LMY48Z or later. For Android versions prior to 6.0 2015-12-01, update to a version released after 2015-12-01.