CVE-2024-32910

June 13, 2024, 9:15 p.m.

Tags

2024-06-13
dsap-vuln-management@google.com
CVE-2024-32910

Product(s) Impacted

UNKNOWN

Description

In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Weaknesses

Date

Published: June 13, 2024, 9:15 p.m.

Last Modified: June 13, 2024, 9:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

dsap-vuln-management@google.com

References

https://source.android.com/security/bulletin/pixel/2024-06-01
dsap-vuln-management@google.com