CVE-2014-9965

Vulnerability

The vulnerability resides in the parsing of socket control messages (SCM) in the Linux kernel as used in all Android releases from Code Aurora Forum (CAF). The issue allows improper handling of specially crafted SCM calls, potentially leading to memory corruption. This affects all Android versions derived from CAF kernels prior to the June 2017 security update.

Exploitation

To exploit this vulnerability, an attacker must have local access to the device and the ability to invoke SCM calls (e.g., via an application). No additional privileges are required initially. The attacker crafts a malicious SCM call that triggers a kernel-level memory corruption due to insufficient validation.

Impact

Successful exploitation results in elevation of privilege from a normal application context to kernel-level code execution. The attacker can gain full control over the device, including the ability to execute arbitrary code with kernel privileges.

Mitigation

The vulnerability was addressed in the Android security bulletin for June 2017 [1]. Users should apply the latest security patch level provided by their device manufacturer. If a patch is not available, no known workaround exists.