A flaw was found in the Linux kernel’s Android compatibility functionality. A local attacker can abuse a use-after-free flaw in the Android binder code to corrupt memory or possibly escalate privileges.

Mitigation

There is no mitigation required for this flaw as it does not affect shipping Red Hat Enterprise Linux kernels.

References

bugzilla.redhat.com/show_bug.cgi?id=1805822

nvd.nist.gov/vuln/detail/CVE-2019-2215

www.cve.org/CVERecord?id=CVE-2019-2215

attackerkb 1

prion 1

symantec 1

huawei 1

exploitdb 2

thn 6

githubexploit 10

packetstorm 2

exploitpack 1

zdt 2

checkpoint_advisories 1

debiancve 1

threatpost 6

cvelist 1

metasploit 1

cve 1

googleprojectzero 5

nvd 1

ubuntucve 2

cisa_kev 3

trendmicroblog 1

qualysblog 1

fireeye 1

androidsecurity 1

impervablog 1

github 1

ubuntu 2

openvas 7

nessus 8

slackware 1

debian 2

osv 2

attackerkb

CVE-2019-2215

2019-10-11 00:00:00

prion

Design/Logic Flaw

2019-10-11 19:15:00

symantec

Google Android Binder CVE-2019-2215 Local Privilege Escalation Vulnerability

2019-10-02 00:00:00

huawei

Security Advisory - Use-after-free Vulnerability in Android Kernel

2019-10-30 00:00:00

exploitdb

Android - Binder Driver Use-After-Free

2019-10-04 00:00:00

Android Binder - Use-After-Free (Metasploit)

2020-02-24 00:00:00

thn

3 Google Play Store Apps Exploit Android Zero-Day Used by NSO Group

2020-01-07 16:41:00

Researchers Uncover SideWinder's Latest Server-Based Polymorphism Technique

2023-05-09 09:39:00

SideWinder Hackers Use Fake Android VPN Apps to Target Pakistani Entities

2022-06-02 09:09:00

githubexploit

Exploit for Use After Free in Google Android

2020-02-17 11:53:54

Exploit for Use After Free in Google Android

2021-02-05 06:23:28

Exploit for Use After Free in Google Android

2019-10-04 06:32:08

packetstorm

Android Binder Use-After-Free

2019-10-18 00:00:00

Android Binder Use-After-Free

2020-02-24 00:00:00

exploitpack

Android - Binder Driver Use-After-Free

2019-10-04 00:00:00

zdt

Android Binder - Use-After-Free Exploit

2020-02-24 00:00:00

Android - Binder Driver Use-After-Free Exploit

2019-10-04 00:00:00

checkpoint_advisories

Android Binder Use After Free (CVE-2019-2215)

2020-01-15 00:00:00

debiancve

CVE-2019-2215

2019-10-11 19:15:10

threatpost

Google Warns of Android Zero-Day Bug Under Active Attack

2019-10-04 16:20:54

SideWinder APT Targets Nepal, Afghanistan in Wide-Ranging Spy Campaign

2020-12-09 19:53:13

A Brisk Private Trade in Zero-Days Widens Their Use

2020-04-06 21:05:06

cvelist

CVE-2019-2215

2019-10-11 18:16:48

metasploit

Android Binder Use-After-Free Exploit

2019-10-17 10:48:49

cve

CVE-2019-2215

2019-10-11 19:15:10

googleprojectzero

Bad Binder: Android In-The-Wild Exploit

2019-11-21 00:00:00

A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain

2022-11-04 00:00:00

Root Cause Analyses for 0-day In-the-Wild Exploits

2020-07-29 00:00:00

nvd

CVE-2019-2215

2019-10-11 19:15:10

ubuntucve

CVE-2019-2215

2019-10-11 00:00:00

CVE-2020-0030

2020-02-13 00:00:00

cisa_kev

Android Kernel Use-After-Free Vulnerability

2021-11-03 00:00:00

Android Kernel Out-of-Bounds Write Vulnerability

2021-11-03 00:00:00

Mediatek Multiple Chipsets Insufficient Input Validation Vulnerability

2021-11-03 00:00:00

trendmicroblog

This Week in Security News: INTERPOL Collaboration Reduces Cryptojacking by 78% and Three Malicious Apps Found on Google Play May be Linked to SideWinder APT Group

2020-01-10 13:37:59

qualysblog

Expand Your Vulnerability & Patch Management Program to Mobile Devices with Qualys VMDR

2021-02-10 21:17:00

fireeye

Zero-Day Exploitation Increasingly Demonstrates Access to Money, Rather than Skill — Intelligence for Vulnerability Management, Part One

2020-04-06 00:00:00

androidsecurity

Pixel Update Bulletin—October 2019

2019-10-07 00:00:00

impervablog

The State of Vulnerabilities in 2019

2020-01-23 08:56:58

github

Pwning the all Google phone with a non-Google bug

2023-01-23 15:05:19

ubuntu

Linux kernel vulnerability

2019-11-13 00:00:00

Linux kernel vulnerabilities

2019-11-13 00:00:00

openvas

Ubuntu: Security Advisory (USN-4186-1)

2019-11-13 00:00:00

Slackware: Security Advisory (SSA:2019-311-01)

2022-04-21 00:00:00

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2693)

2020-01-23 00:00:00

nessus

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4186-1)

2019-11-13 00:00:00

Ubuntu 16.04 LTS : Linux kernel vulnerability (USN-4186-3)

2019-11-14 00:00:00

Slackware 14.2 : Slackware 14.2 kernel (SSA:2019-311-01)

2019-11-08 00:00:00

slackware

[slackware-security] Slackware 14.2 kernel

2019-11-07 22:31:40

debian

[SECURITY] [DLA 2068-1] linux security update

2020-01-18 04:38:12

[SECURITY] [DLA 2114-1] linux-4.9 security update

2020-03-02 18:14:56

osv

linux - security update

2020-01-17 00:00:00

linux-4.9 - security update

2020-02-21 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.448

Percentile

97.5%

JSON

Related for RH:CVE-2019-2215