kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev/gcioctl with the command 3221773726 and cause a kernel crash.
References
Link | Resource |
---|---|
https://github.com/datadancer/HIAFuzz/blob/master/CVE-Advisory.md | Exploit Third Party Advisory |
https://github.com/datadancer/HIAFuzz/blob/master/CVE-2018-11019.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2018-10-16 15:29
Updated : 2018-12-03 10:22
NVD link : CVE-2018-11019
Mitre link : CVE-2018-11019
JSON object : View
CWE
CWE-88
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
Products Affected
amazon
- kindle_fire_hd
- fire_os