CVE-2016-0809

Name of the Vulnerable Software and Affected Versions Android versions prior to 2016-02-01

Description The issue is related to a use-after-free vulnerability in the wifi cleanup function, which can be exploited by attackers to gain privileges. This can be achieved by leveraging access to the local physical environment during the execution of a crafted application.

Recommendations For Android versions prior to 2016-02-01, consider restricting access to the wifi cleanup function in the wifi hal.cpp component until a patch is available. As a temporary workaround, avoid using the wifi hal component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.