2024-01-18 18:12:12 UTC

The discovery of over 100 vulnerabilities in the high-performance asynchronous I/O framework, io_uring, has ushered in a new era of concern for Android users. Introduced in the Linux kernel's version 5.1, this subsystem has faced extensive exploitation in desktop Linux. However, no public research had targeted it in the Android kernel until now due to its stringent limitations on memory layout manipulation. In an upcoming talk, researchers will discuss their approach to achieving privilege escalation on Google Pixel 6 and Samsung S22 using a UAF io_uring bug known as CVE-2022-20409. For more details, refer to the full abstract and presentation materials at: [link to the source].