I wonder how long CVE-2019-2215 has been exploitable. Trying to read through the kernel sources to figure out if there was a specific date. I notice that earlier kernels called `binder_free_thread` instead of `binder_thread_release`. https://lore.kernel.org/patchwork/patch/805046/ …
Check out https://github.com/marcinguy/CVE-2019-2215/blob/master/README.md#update-1 … (Kernel 3.4.0) If you know how to replicate this using C (native) this can be brought further, since this is the behavior needed for exploitation.