Vulnerabilities

CVE-2025-27701

by Fred · 27/05/2025

In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array(). Later this values will be derefenced without prior NULL check, which can lead to local Temporary DoS or OOB Read, leading to information disclosure.

More information : https://source.android.com/security/bulletin/pixel/2025-05-01

Similar

Tags: Cybersecurity Alert