In the beginning of 2019, a new feature was added in the Binder kernel module.
This patch allows to send the caller SElinux context in a Binder transaction.
This feature was in fact a fix for CVE-2019-2023.
This vulnerability is related to an unsafe use of the
leading to ACL bypass.
This article studies details of this patch and its impact on security.