Softpedia: A stack buffer overflow vulnerability that has been eliminated in the KitKat edition of Android is still affecting previous versions of the mobile operating system.
By exploiting this vulnerability, an attacker could gain access to important information, such as the device’s lock credentials, encrypted and decrypted master keys, data, and hardware-backed key identifiers from the memory, as well as the ability to perform crypto operations on behalf of the user.