CVE-2020-0235

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue arises in the crus sp shared ioctl function where 4 bytes from user data are copied into the size variable. This variable is then used as the size parameter for copy from user, resulting in the overwrite of memory following crus sp hdr, a static variable of type struct crus sp ioctl header.

Recommendations For Android kernel, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.