CVE-2019-2204

Summary

In FindSharedFunctionInfo of objects.cc, there is a possible out of bounds read due to a mistake in AST traversal. This could lead to remote code execution in the pacprocessor with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.1, Android-9 Android ID: A-138442295

Affected Software

VendorProductVersion RangeStatus
n/aAndroidAndroid-8.1affected
n/aAndroidAndroid-9affected

Weaknesses

  • Remote code execution

ADP Enrichment

CVE Program Container

Additional References

References