网安资讯详情 - SecLens 情报雷达

网安资讯,一网打尽。汇集权威漏洞通告与行业要闻,结合分组浏览、智能过滤、RSS订阅 和 Webhook 推送,多通道拓展您的安全情报视野。

CVE-2026-0068 | Google Android 17 PackageInstallerService.java createSessionInternal improper synchronization

来源: vuldb · 发布时间 2026-06-17 16:54 (UTC+08:00) · 抓取时间 2026-06-17 17:01 (UTC+08:00)

原文链接

摘要

A vulnerability was found in <a href="https://vuldb.com/product/google:android">Google Android 17</a> and classified as <a href="https://vuldb.com/kb/risk">critical</a>. This vulnerability affects the function <code>createSessionInternal</code> of the file <em>PackageInstallerService.java</em>. Such manipulation leads to improper synchronization. This vulnerability is listed as <a href="https://vuldb.com/cve/CVE-2026-0068">CVE-2026-0068</a>. The attack must be carried out locally. There is no available exploit.

标签

扩展字段

{
  "raw_pub_date": "Wed, 17 Jun 2026 10:54:30 +0200"
}