CVE-2017-14881
- EPSS 0.61%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:41
While calling the IPA IOCTL handler for IPA_IOC_ADD_HDR_PROC_CTX in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-13, a use-after-free condition may potentially occur.
CVE-2017-14883
- EPSS 0.7%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:41
In the function wma_unified_power_debug_stats_event_handler() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-18, if the value param_buf->num_debug_register received from the FW command buffer is close to max of uint32, then th...
CVE-2017-14891
- EPSS 0.45%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:42
In the KGSL driver function _gpuobj_map_useraddr() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-12, the contents of the stack can get leaked due to an uninitialized variable.
CVE-2017-14892
- EPSS 0.16%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:42
In the function msm_pcm_hw_params() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-09-19, the return value of q6asm_open_shared_io() is not checked properly potentially leading to a possible dangling pointer access.
CVE-2017-15823
- EPSS 0.19%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:17
In spectral_create_samp_msg() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-11, some values from firmware are not properly validated potentially leading to a buffer overflow.
CVE-2017-15826
- EPSS 0.13%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:18
Due to a race condition in MDSS rotator in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-20, a double free vulnerability may potentially exist when two threads free the same perf structures.
CVE-2017-15846
- EPSS 0.16%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:19
In the video_ioctl2() function in the camera driver in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-09-16, an untrusted pointer dereference may potentially occur.
CVE-2017-15852
- EPSS 0.16%
- Veröffentlicht 30.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:20
Information leak of the ISPIF base address in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the camera driver.
- EPSS 1.36%
- Veröffentlicht 30.03.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:06:56
In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 625, SD 650/52, SD 835, access control left a configuration space unprotected.
- EPSS 1.12%
- Veröffentlicht 30.03.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:44
In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 410/12, PKCS7 padding is not supported by the crypto storage APIs.