all InfoSec news
Gaining kernel code execution on an MTE-enabled Pixel 8
The GitHub Blog: Security News and Updates github.blog
In this post, I’ll look at CVE-2023-6241, a vulnerability in the Arm Mali GPU that allows a malicious app to gain arbitrary kernel code execution and root on an Android phone. I’ll show how this vulnerability can be exploited even when Memory Tagging Extension (MTE), a powerful mitigation, is enabled on the device.
The post Gaining kernel code execution on an MTE-enabled Pixel 8 appeared first on The GitHub Blog.
android app arm arm mali can code code execution cve exploited extension github security lab gpu kernel mali malicious malicious app memory mitigation phone pixel pixel 8 root security security research tagging vulnerability