NVIDIA Tegra Gralloc module contains a vulnerability in driver in which it does not validate input parameter of the registerbuffer API, which may lead to arbitrary code execution, denial of service, or escalation of privileges. Android ID: A-62540032 Severity Rating: High Version: N/A.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2019-01-01 | Vendor Advisory |
http://www.securityfocus.com/bid/106476 | Third Party Advisory VDB Entry |
https://nvidia.custhelp.com/app/answers/detail/a_id/4804 |
Configurations
Information
Published : 2019-01-31 12:29
Updated : 2019-10-02 17:03
NVD link : CVE-2018-6241
Mitre link : CVE-2018-6241
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
- android