CVE-2016-10297

Name of the Vulnerable Software and Affected Versions Android versions prior to a fixed version Linux kernel (affected versions not specified)

Description The issue is caused by synchronization errors when using a shared resource in the TrustZone component of the Android operating system. This could potentially allow a remote attacker to simplify the process of decrypting a message. A Time-of-Check Time-of-Use Race Condition vulnerability may exist in TrustZone in all Android releases from CAF using the Linux kernel.

Recommendations For Android versions prior to a fixed version, update to a version that includes the fix for this issue. For Linux kernel, at the moment, there is no information about a newer version that contains a fix for this vulnerability.