Security News

CVE-2018-5873

National Vulnerability Database - Fri, 07/06/2018 - 15:29
Due to a race condition when accessing files in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a Use After Free condition in the kernel can occur.
Categories: Security News

CVE-2018-5886

National Vulnerability Database - Fri, 07/06/2018 - 15:29
A pointer in an ADSPRPC command is not properly validated in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), which can lead to kernel memory being accessed.
Categories: Security News

CVE-2018-5907

National Vulnerability Database - Fri, 07/06/2018 - 15:29
Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel.
Categories: Security News

CVE-2017-15851

National Vulnerability Database - Fri, 07/06/2018 - 15:29
Lack of copy_from_user and information leak in function "msm_ois_subdev_do_ioctl, file msm_ois.c can lead to a camera crash in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel
Categories: Security News

CVE-2018-11304

National Vulnerability Database - Fri, 07/06/2018 - 15:29
Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel.
Categories: Security News

CVE-2018-13410

National Vulnerability Database - Fri, 07/06/2018 - 15:29
** DISPUTED ** Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service (invalid free and application crash) or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in which an untrusted party controls the -TT value, given that the entire purpose of -TT is execution of arbitrary commands.
Categories: Security News

CVE-2018-3570

National Vulnerability Database - Fri, 07/06/2018 - 15:29
In the cpuidle driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel, the list_for_each macro was not used correctly which could lead to an untrusted pointer dereference.
Categories: Security News

CVE-2018-3586

National Vulnerability Database - Fri, 07/06/2018 - 15:29
An integer overflow to buffer overflow vulnerability exists in the ADSPRPC heap manager in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel.
Categories: Security News

CVE-2018-3587

National Vulnerability Database - Fri, 07/06/2018 - 15:29
In a firmware memory dump feature in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), a Use After Free condition can occur.
Categories: Security News

CVE-2018-3608

National Vulnerability Database - Fri, 07/06/2018 - 15:29
A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes.
Categories: Security News

CVE-2018-5853

National Vulnerability Database - Fri, 07/06/2018 - 15:29
A race condition exists in a driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-05-05 potentially leading to a use-after-free condition.
Categories: Security News

CVE-2018-5855

National Vulnerability Database - Fri, 07/06/2018 - 15:29
While padding or shrinking a nested wmi packet in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a buffer over-read can potentially occur.
Categories: Security News

CVE-2018-5858

National Vulnerability Database - Fri, 07/06/2018 - 15:29
In the audio debugfs in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, out of bounds access can occur.
Categories: Security News

CVE-2018-5859

National Vulnerability Database - Fri, 07/06/2018 - 15:29
Due to a race condition in the MDSS MDP driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a Use After Free condition can occur.
Categories: Security News

CVE-2018-5862

National Vulnerability Database - Fri, 07/06/2018 - 15:29
In __wlan_hdd_cfg80211_vendor_scan() in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, when SCAN_SSIDS and QCA_WLAN_VENDOR_ATTR_SCAN_FREQUENCIES are parsed, a buffer overwrite can potentially occur.
Categories: Security News

CVE-2018-5864

National Vulnerability Database - Fri, 07/06/2018 - 15:29
While processing a WMI_APFIND event in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a buffer over-read and information leak can potentially occur.
Categories: Security News

CVE-2018-5865

National Vulnerability Database - Fri, 07/06/2018 - 15:29
While processing a debug log event from firmware in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, an integer underflow and/or buffer over-read can occur.
Categories: Security News

CVE-2018-5872

National Vulnerability Database - Fri, 07/06/2018 - 15:29
While parsing over-the-air information elements in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, the use of an out-of-range pointer offset can occur.
Categories: Security News

CVE-2018-5890

National Vulnerability Database - Fri, 07/06/2018 - 13:29
If the fdt_totalsize is reported as 0 for the current device tree, it bypasses an error check for a valid device tree in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05.
Categories: Security News

CVE-2018-5891

National Vulnerability Database - Fri, 07/06/2018 - 13:29
While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in Snapdragon Mobile and Snapdragon Wear.
Categories: Security News

Pages