CVE-2022-20590

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to improper input validation in the valid va sec mfc check function of drm access control.c, which could lead to local information disclosure without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android kernel, consider restricting access to the valid va sec mfc check function as a temporary workaround until a patch is available.