CVE-2017-13217

Name of the Vulnerable Software and Affected Versions: Android kernel

Description: The issue is related to an out-of-bounds write in the bootloader due to reading a string without verifying that it's null-terminated. This could lead to a secure boot bypass and a local elevation of privilege, enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not required for exploitation.

Recommendations: For Android kernel, apply the necessary patch to fix the out-of-bounds write issue in the bootloader to prevent secure boot bypass and local elevation of privilege.