CVE-2024-32900 Information

Description

In lwis_fence_signal of lwis_debug.c there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from hal_camera_default SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation.

Reference

https://source.android.com/security/bulletin/pixel/2024-06-01