In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a potential buffer overflow vulnerability in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs as buffers defined in this API can hold maximum 32 bytes but data more than 32 bytes can get copied.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/pixel/2018-01-01 | Patch Vendor Advisory |
Configurations
Information
Published : 2018-01-10 14:29
Updated : 2018-01-26 04:34
NVD link : CVE-2017-11081
Mitre link : CVE-2017-11081
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
- android