News aggregator

CVE-2017-0834

National Vulnerability Database - Thu, 11/16/2017 - 18:29
A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63125953.
Categories: Security News

CVE-2017-0835

National Vulnerability Database - Thu, 11/16/2017 - 18:29
A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63316832.
Categories: Security News

CVE-2017-0836

National Vulnerability Database - Thu, 11/16/2017 - 18:29
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226.
Categories: Security News

CVE-2017-0838

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-63522818.
Categories: Security News

CVE-2017-0839

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64478003.
Categories: Security News

CVE-2017-0840

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An information disclosure vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62948670.
Categories: Security News

CVE-2017-0841

National Vulnerability Database - Thu, 11/16/2017 - 18:29
A remote code execution vulnerability in the Android system (libutils). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026.
Categories: Security News

CVE-2017-0842

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An elevation of privilege vulnerability in the Android system (bluetooth). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37502513.
Categories: Security News

CVE-2017-0843

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An elevation of privilege vulnerability in the MediaTek ccci. Product: Android. Versions: Android kernel. Android ID: A-62670819. References: M-ALPS03361488.
Categories: Security News

CVE-2017-0845

National Vulnerability Database - Thu, 11/16/2017 - 18:29
A denial of service vulnerability in the Android framework (syncstorageengine). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35028827.
Categories: Security News

CVE-2017-0847

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product: Android. Versions: 8.0. Android ID: A-65540999.
Categories: Security News

CVE-2017-0848

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64477217.
Categories: Security News

CVE-2017-0849

National Vulnerability Database - Thu, 11/16/2017 - 18:29
An information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62688399.
Categories: Security News

CVE-2017-11073

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/ath_pktlog/cld to user space.
Categories: Security News

CVE-2017-11085

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, an integer overflow leading to a buffer overflow due to improper bound checking in msm_audio_effects_virtualizer_handler, file msm-audio-effects-q6-v2.c
Categories: Security News

CVE-2017-11089

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed in nl80211_set_station when user space application sends attribute NL80211_ATTR_LOCAL_MESH_POWER_MODE with data of size less than 4 bytes
Categories: Security News

CVE-2017-11090

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed in __wlan_hdd_cfg80211_set_pmksa when user space application sends PMKID of size less than WLAN_PMKID_LEN bytes.
Categories: Security News

CVE-2017-11091

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the function mdss_rotator_ioctl in the driver /dev/mdss_rotator, a Use-After-Free condition can potentially occur due to a fence being installed too early.
Categories: Security News

CVE-2017-11092

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the KGSL driver function kgsl_ioctl_gpu_command, a Use After Free condition can potentially occur.
Categories: Security News

CVE-2017-11093

National Vulnerability Database - Thu, 11/16/2017 - 17:29
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, buffer Over-read in Display due to the lack of an upper-bound validation when reading "num_of_cea_blocks" from the untrusted source (EDID), kernel memory can be exposed.
Categories: Security News

Pages