CVE-2017-17769
- EPSS 0.14%
- Veröffentlicht 30.03.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:18:37
Information leakage in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the audio driver.
CVE-2017-17771
- EPSS 0.16%
- Veröffentlicht 30.03.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:18:37
In msm_isp_prepare_v4l2_buf in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-02-12, an array out of bounds can occur.
CVE-2017-9691
- EPSS 0.13%
- Veröffentlicht 30.03.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:36:39
There is a race condition in Android for MSM, Firefox OS for MSM, and QRD Android that allows to access to already free'd memory in the debug message output functionality contained within the mobicore driver.
CVE-2017-9692
- EPSS 0.2%
- Veröffentlicht 30.03.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:36:39
When an atomic commit is issued on a writeback panel with a NULL output_layer parameter in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-03, a NULL pointer dereference may potentially occur.
CVE-2017-9693
- EPSS 0.19%
- Veröffentlicht 30.03.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:36:39
The length of attribute value for STA_EXT_CAPABILITY in __wlan_hdd_change_station in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-06 being less than the actual lenth of StaParams.extn_capability results in a read for extra byte...
CVE-2017-9723
- EPSS 0.17%
- Veröffentlicht 30.03.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:36:42
The touchscreen driver synaptics_dsx in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-05, the size of a stack-allocated buffer can be set to a value which exceeds the size of the stack.
CVE-2017-11087
- EPSS 0.54%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:07:04
libOmxVenc in Android for MSM, Firefox OS for MSM, and QRD Android copies the output buffer to an application with the "filled length", which is larger than the output buffer's actual size, leading to an information disclosure problem in the context ...
CVE-2017-14875
- EPSS 0.54%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:40
In the handler for the ioctl command VIDIOC_MSM_ISP_DUAL_HW_LPM_MODE in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-05-23, a heap overread vulnerability exists.
CVE-2017-14876
- EPSS 0.61%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:40
In msm_ispif_config_stereo() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-21, the parameter params->entries[i].vfe_intf comes from userspace without any bounds check which could potentially result in a kernel out-of-bounds w...
CVE-2017-14877
- EPSS 0.61%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:41
While the IPA driver in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-08-31 is processing IOCTL commands there is no mutex lock of allocated memory. If one thread sends an ioctl cmd IPA_IOC_QUERY_RT_TBL_INDEX while another sends an...