Possible Out of Bounds Read Vulnerability in dvfs.c Could Lead to Local Information Disclosure
CVE-2024-29742

Currently unrated

Key Information:

Vendor: Unknown
Status: Android
Vendor: CVE Published:; 5 April 2024

What is CVE-2024-29742?

In apply_minlock_constraint of dvfs.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

References

https://source.android.com/security/bulletin/pixel/2024-0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 5, 2024

Unknown

What is CVE-2024-29742?

References

Timeline