In a driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, kernel heap memory can be exposed to userspace.
References
Link | Resource |
---|---|
https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=28d23d4d7999f683b27b6e0c489635265b67a4c9 | Issue Tracking Patch Third Party Advisory |
https://source.android.com/security/bulletin/2017-05-01 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/98219 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2017-08-16 08:29
Updated : 2017-08-18 10:42
NVD link : CVE-2016-5854
Mitre link : CVE-2016-5854
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
- android