CVE-2016-0844

Name of the Vulnerable Software and Affected Versions Android 6.x versions prior to 2016-04-01

Description The issue is caused by incorrect access restriction to socket ioctl calls in the Qualcomm RF driver of the Android operating system. This allows a local attacker to elevate privileges using a specially crafted application.

Recommendations For Android 6.x versions prior to 2016-04-01, consider restricting access to the vulnerable ioctl calls until a patch is available. As a temporary workaround, avoid using the vulnerable Qualcomm RF driver functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.