CVE-2020-0234

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a missing bounds check in the crus afe get param function of msm-cirrus-playback.c, which could lead to a possible out of bounds write. This could result in local escalation of privilege with no additional execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android kernel, consider applying a patch that includes a bounds check for the crus afe get param function to prevent out of bounds writes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.