1
Candidate: CVE-2016-3750
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3750
5
http://source.android.com/security/bulletin/2016-07-01.html
7
libs/binder/Parcel.cpp in the Parcels Framework APIs in Android 4.x before
8
4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01
9
does not validate the return value of the dup system call, which allows
10
attackers to bypass an isolation protection mechanism via a crafted
11
application, aka internal bug 28395952.
20
upstream: https://android.googlesource.com/platform/frameworks/native/+/54cb02ad733fb71b1bdf78590428817fb780aff8
21
upstream_android: needs-triage
23
precise/esm_android: DNE
24
trusty_android: ignored (abandoned)
25
vivid/stable-phone-overlay_android: ignored (reached end-of-life)
26
vivid/ubuntu-core_android: DNE
27
wily_android: ignored (reached end-of-life)
28
xenial_android: ignored (abandoned)
29
yakkety_android: ignored (reached end-of-life)
30
zesty_android: ignored (reached end-of-life)