Home

Description

In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

PUBLISHED Reserved 2025-05-22 | Published 2025-12-08 | Updated 2025-12-11 | Assigner google_android

Problem types

Elevation of privilege

Product status

Default status
unaffected

Android kernel
affected

References

android.googlesource.com/...8815577832cafbfcd7f98025f0da718d

android.googlesource.com/...be38dc7c57bac8d3ba9feed989289b20

source.android.com/security/bulletin/2025-12-01

cve.org (CVE-2025-48637)

nvd.nist.gov (CVE-2025-48637)

Download JSON