{"uuid": "135d885b-1496-4ab7-b1c4-c69ba158a72d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20186", "type": "published-proof-of-concept", "source": "https://t.me/linkersec/178", "content": "Corrupting memory without memory corruption\n\nAn article by Man Yue Mo about exploiting CVE-2022-20186, an integer overflow in the Arm Mali GPU driver.\n\nThe bug allows mapping arbitrary physical pages to the GPU memory with both read and write access. The exploit gets arbitrary kernel code execution on Pixel 6, disables SELinux, and gains root.", "creation_timestamp": "2022-08-02T23:52:26.000000Z"}