In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to an integer overflow.
References
Link | Resource |
---|---|
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin | Patch Third Party Advisory |
https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=31ad3a5a7458e60f5e0ba4f492cebe1f1bda0964 | Patch Third Party Advisory |
https://source.android.com/security/bulletin/pixel/2018-09-01#qualcomm-components | Patch Vendor Advisory |
Configurations
Information
Published : 2018-09-18 11:29
Updated : 2018-11-09 09:33
NVD link : CVE-2018-11301
Mitre link : CVE-2018-11301
JSON object : View
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)
Products Affected
- android