Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.19%
  • Veröffentlicht 18.09.2018 18:29:04
  • Zuletzt bearbeitet 21.11.2024 03:43:05

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to an integer overflow.

  • EPSS 0.39%
  • Veröffentlicht 18.09.2018 18:29:03
  • Zuletzt bearbeitet 21.11.2024 03:43:04

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, in wma_ndp_confirm_event_handler and wma_ndp_indication_event_handler, ndp_cfg len and num_ndp_app_info is from fw. If they are not checked, i...

  • EPSS 0.33%
  • Veröffentlicht 18.09.2018 18:29:03
  • Zuletzt bearbeitet 21.11.2024 03:43:05

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, WLAN handler indication from the firmware gets the information for 4 access categories. While processing this information only the first 3 AC ...

  • EPSS 0.19%
  • Veröffentlicht 18.09.2018 18:29:03
  • Zuletzt bearbeitet 21.11.2024 03:43:05

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, WMA handler carries a fixed event data from the firmware to the host . If the length and anqp length from this event data exceeds the max leng...

  • EPSS 0.19%
  • Veröffentlicht 18.09.2018 18:29:03
  • Zuletzt bearbeitet 21.11.2024 03:43:05

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a message from firmware in WLAN handler, a buffer overwrite can occur.

  • EPSS 0.19%
  • Veröffentlicht 18.09.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 03:43:02

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, double free of memory allocation is possible in Kernel when it explicitly tries to free that memory on driver probe failure, since memory allo...

  • EPSS 0.17%
  • Veröffentlicht 18.09.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 03:43:02

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Venus HW searches for start code when decoding input bit stream buffers. If start code is not found in entire buffer, there is over-fetch beyo...

  • EPSS 0.2%
  • Veröffentlicht 18.09.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 03:43:03

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing user-space there is no size validation of the NAT entry input. If the user input size of the NAT entry is greater than the ma...

  • EPSS 0.19%
  • Veröffentlicht 18.09.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 03:43:03

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while calling IPA_IOC_MDFY_RT_RULE IPA IOCTL, header entry is not checked before use. If IPA_IOC_MDFY_RT_RULE IOCTL called for header entries ...

  • EPSS 0.17%
  • Veröffentlicht 18.09.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 03:43:03

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while accessing global variable "debug_client" in multi-thread manner, Use after free issue occurs