AndroidVulnerabilities.org

levitator

(json)

• CVE numbers: CVE-2011-1350 [citation-needed], CVE-2011-1352 [citation-needed]
• Coordinated disclosure?: true
• Categories: kernel
• Details: Improper bounds checking in the PowerVR driver as used in versions of Android prior to 2.3.6 when copying user data to kernel memory allows a malicious local application to write to the same area of memory referenced in CVE-2011-1350, potentially allowing for arbitrary code execution and privilege escalation. [citation-needed]
• Discovered by: Geremy Condra [security-focus-57900][archived] on: 2011-03-10 [CVE-2011-1350]
• Reported on: Unknown
• Fixed on: Unknown
• Fix released on: 2011-09-02 [w-ard-ver-hist], 2011-09-29 [tag-android-2.3.6_r1]
• Affected versions: 1.0 -- 2.3.5 [citation-needed] regex: (1.[0-9].[0-9])|(2.(([0-2].[0-9])|(3.[0-5])))
• Affected devices: all [citation-needed]
• Affected manufacturers: all [citation-needed]
• Fixed versions: 2.3.6 [citation-needed]
• Submission: by: Daniel R. Thomas, on: 2013-09-02