Switch branches/tags
Nothing to show
Find file History
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
..
Failed to load latest commit information.
Android.mk
Application.mk
fips_status.h
makefile
pwn.c
qcedev.h
readme.md
syscall.S

readme.md

CVE-2016-3935

Exploit

Just for Nexus 6p MTC19X, if you want to run on other version, some symbol address should be changed

tty_struct object may be allocated from kmalloc-4096 or kmalloc-2048 or kmalloc-1024 this exploit only deal with kmalloc-4096 case

shell@angler:/ $ getprop ro.build.fingerprint google/angler/angler:6.0.1/MTC19X/2960136:user/release-keys

Reference