CVE-2011-1149
EUVD-2011-116321.04.2011, 10:55
Android before 2.3 does not properly restrict access to the system property space, which allows local applications to bypass the application sandbox and gain privileges, as demonstrated by psneuter and KillingInTheNameOf, related to the use of Android shared memory (ashmem) and ASHMEM_SET_PROT_MASK.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| android | 𝑥 ≤ 2.2.2 | |
| android | 1.5 | |
| android | 1.6 | |
| android | 2.1 | |
| android | 2.2:rev1 | |
| android | 2.2.1 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| linux-flo |
| ||||||||||||||||||||||
| linux-goldfish |
| ||||||||||||||||||||||
| linux-grouper |
| ||||||||||||||||||||||
| linux-maguro |
| ||||||||||||||||||||||
| linux-mako |
| ||||||||||||||||||||||
| linux-manta |
|
Common Weakness Enumeration
References