» 2018 » 3월

CVE-2017-18062

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18062

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, potential buffer overflow can happen when processing UTF event in wma_process_utf_event().

Source: CVE-2017-18062

CVE-2017-18059

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18059

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for vdev id in wma_scan_event_callback(), which is received from firmware, leads to potential out of bounds memory read.

Source: CVE-2017-18059

CVE-2017-18066

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18066

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper controls in MSM CORE leads to use memory after it is freed in msm_core_ioctl().

Source: CVE-2017-18066

CVE-2017-18065

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18065

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for vent->vdev_id in wma_action_frame_filter_mac_event_handler(), which is received from firmware, leads to arbitrary code execution.

Source: CVE-2017-18065

CVE-2018-3561

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2018-3561

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a race condition in diag_ioctl_lsm_deinit() leads to a Use After Free condition.

Source: CVE-2018-3561

CVE-2017-18061

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18061

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, potential buffer overflow can happen when processing AOA measurement event from WIGIG firmware in wil_aoa_evt_meas().

Source: CVE-2017-18061

CVE-2017-18060

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18060

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for resp_event->vdev_id in wma_unified_bcntx_status_event_handler(), which is received from firmware, leads to potential out of bounds memory read.

Source: CVE-2017-18060

CVE-2017-11082

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-11082

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, due to a race condition in a firmware loading routine, a buffer overflow could potentially occur if multiple user space threads try to update the WLAN firmware file through sysfs.

Source: CVE-2017-11082

CVE-2017-18050

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-18050

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for vdev_map in wma_tbttoffset_update_event_handler(), which is received from firmware, leads to potential buffer overwrite and out of bounds memory read.

Source: CVE-2017-18050

CVE-2017-11074

Posted on 2018년 3월 17일2018년 3월 17일 by admin

CVE-2017-11074

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is an obsolete set/reset ssid hotlist API.

Source: CVE-2017-11074