CNNVD-202512-909 Information

CNNVD ID

CNNVD-202512-909

Related CVE

CVE-2025-48623

• CNNVD Published: 2025-12-08

Description (Chinese)

Google Android是美国谷歌（Google）公司的一套以Linux为基础的开源操作系统。 Google Android存在缓冲区错误漏洞，该漏洞源于输入验证不当，可能导致本地权限提升。

Description (English)

Google Android is a Linux-based open source operating system of Google. Google Android has an error loophole in the buffer zone, which results from inappropriate input validation, which may lead to an increase in local rights.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

谷歌

Published

2025-12-08

Last Modified

2026-02-24

References

https://android.googlesource.com/kernel/common/+/e76cff4952af4ac4652dc74ffbd134ff57c47895 https://android.googlesource.com/kernel/common/+/3b6fab0ff24f7108c71a4d9c12567455cb2a5a81 https://source.android.com/security/bulletin/2025-12-01 https://access.redhat.com/security/cve/cve-2025-48623

Patch

https://source.android.com/security/bulletin/2025-12-01