CVE-2017-14884
- EPSS 0.17%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:13:41
In all Qualcomm products with Android releases from CAF using the Linux kernel, due to lack of bounds checking on the variable "data_len" from the function WLANQCMBR_McProcessMsg, a buffer overflow may potentially occur in WLANFTM_McProcessMsg.
CVE-2017-15817
- EPSS 0.87%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:17
In all Qualcomm products with Android releases from CAF using the Linux kernel, when an access point sends a challenge text greater than 128 bytes, the host driver is unable to validate this potentially leading to authentication failure.
CVE-2017-15820
- EPSS 0.16%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:17
In all Qualcomm products with Android releases from CAF using the Linux kernel, in a KGSL IOCTL handler, a Use After Free Condition can potentially occur.
- EPSS 0.12%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:18
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in a GPU Driver which can potentially lead to a Use After Free condition.
CVE-2017-15860
- EPSS 0.39%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:21
In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing an encrypted authentication management frame, a stack buffer overflow may potentially occur.
CVE-2017-15861
- EPSS 0.15%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:21
In all Qualcomm products with Android releases from CAF using the Linux kernel, in the function wma_roam_synch_event_handler, vdev_id is received from firmware and used to access an array without validation.
CVE-2017-15862
- EPSS 0.15%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:21
In all Qualcomm products with Android releases from CAF using the Linux kernel, in wma_unified_link_radio_stats_event_handler(), the number of radio channels coming from firmware is not properly validated, potentially leading to an integer overflow v...
CVE-2017-17764
- EPSS 0.17%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:18:36
In all Qualcomm products with Android releases from CAF using the Linux kernel, the num_failure_info value from firmware is not properly validated in wma_rx_aggr_failure_event_handler() so that an integer overflow vulnerability in a buffer size calcu...
CVE-2017-17765
- EPSS 0.17%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:18:36
In all Qualcomm products with Android releases from CAF using the Linux kernel, multiple values received from firmware are not properly validated in wma_get_ll_stats_ext_buf() and are used to allocate the sizes of buffers and may be vulnerable to int...
CVE-2017-17767
- EPSS 0.16%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:18:37
In all Qualcomm products with Android releases from CAF using the Linux kernel, the IL client may free a buffer OMX Video Encoder Component and then subsequently access the already freed buffer.