Boredom led researcher John Gordon to discover a technique that bypassed the lockscreen on his Android device. By entering a long string of random characters into the password field after opening the phone s camera app, Gordon said he was able to get to the home screen and access anything stored on the device. The vulnerability affects Android devices earlier than version 5.1.1; the excessively long character strings destabilize the camera app. Google on Sept. 9 released an over-the-air security update that patched this vulnerability and a number of others.
Source: https://threatpost.com/google-patches-latest-android-lockscreen-bypass/114691/