CVE-2022-20156

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to improper input validation in the unflatten function of GraphicBuffer.cpp, which could lead to arbitrary code execution. This might result in local escalation of privilege without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android kernel, consider applying the necessary security patches to fix the improper input validation issue in GraphicBuffer.cpp. At the moment, there is no information about a newer version that contains a fix for this vulnerability.