The specific exploit payload for the POC relies on a su binary. The vuln is ambivalent and other non-su paths will exist.
Of course, but it does not matter as the entire AF_ALG module is forbidden by SELinux anyway (on Android).
Of course, but it does not matter as the entire AF_ALG module is forbidden by SELinux anyway (on Android).