VYPR
← All advisories
High severity7.8NVD Advisory· Published Jan 6, 2016· Updated May 6, 2026

CVE-2015-6640

CVE-2015-6640

Description

A typo in prctl_set_vma_anon_name in Android kernel before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows privilege escalation or denial of service via vma list corruption.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A typo in prctl_set_vma_anon_name in Android kernel before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows privilege escalation or denial of service via vma list corruption.

Vulnerability

The prctl_set_vma_anon_name function in kernel/sys.c contains a typo that allows it to set the anonymous VMA name across two adjacent VMAs simultaneously, instead of a single VMA. This can corrupt the VMA list. Affected versions include Android before 5.1.1 LMY49F and Android 6.0 before the January 1, 2016 security patch level [1][2].

Exploitation

An attacker with the ability to execute a crafted application on the device can trigger the bug by invoking the prctl system call with specific arguments. No additional permissions beyond those required to call the syscall are needed. The corrupted VMA list can lead to memory corruption or system instability [1][2].

Impact

Successful exploitation can result in local privilege escalation to the kernel level or cause a denial of service via system crash. The vulnerability is rated High severity with a CVSS v3 score of 7.8 [1].

Mitigation

Google addressed this issue in Android 5.1.1 LMY49F and later, and in Android 6.0 with the January 1, 2016 security patch level or later. The fix is also available in the Android Open Source Project (AOSP) as commit 69bfe2d957d903521d32324190c2754cb073be15 [2]. Users should apply the available OTA updates or flash the latest firmware images [1].

References
  1. Nexus Security Bulletin—January 2016
  2. 69bfe2d957d903521d32324190c2754cb073be15 - kernel/common - Git at Google

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

5
  • Google/Android5 versions
    cpe:2.3:o:google:android:4.4.4:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:google:android:4.4.4:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:5.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:5.1.1:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
    • (no CPE)range: < 5.1.1 LMY49F, < 6.0 before 2016-01-01

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.