Possible Permanent Denial-of-Service Vulnerability in removeUnusedPackagesLPw of PackageManagerService.java

CVE-2020-0021

In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. This could lead to remote denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-141413692

Learn more about our Cis Benchmark Audit For Google Android.