CVE-2016-0810

Name of the Vulnerable Software and Affected Versions Android versions prior to 4.4.4 Android versions 5.x prior to 5.1.1 LMY49G Android versions 6.x before 2016-02-01

Description The issue is related to insufficient access control in the media/libmedia/SoundPool.cpp component of the mediaserver in the Android operating system. This can be exploited by a local attacker using a specially crafted application to gain elevated privileges. The exploitation can result in obtaining Signature or SignatureOrSystem access.

Recommendations For Android versions prior to 4.4.4, update to version 4.4.4 or later. For Android versions 5.x prior to 5.1.1 LMY49G, update to version 5.1.1 LMY49G or later. For Android versions 6.x before 2016-02-01, ensure that the device is updated with the security patch level of 2016-02-01 or later.