» 2018 » 6월

CVE-2018-0496

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-0496

Directory traversal issues in the D-Mod extractor in DFArc and DFArc2 (as well as in RTsoft’s Dink Smallwood HD / ProtonSDK version) before 3.14 allow an attacker to overwrite arbitrary files on the user’s system.

Source: CVE-2018-0496

CVE-2018-3571

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-3571

In the KGSL driver in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel, a Use After Free condition can occur when printing information about sparse memory allocations

Source: CVE-2018-3571

CVE-2017-15842

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2017-15842

Buffer might get used after it gets freed due to unlocking the mutex before freeing the buffer in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Source: CVE-2017-15842

CVE-2018-3576

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-3576

improper validation of array index in WiFi driver function sapInterferenceRssiCount() leads to array out-of-bounds access in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Source: CVE-2018-3576

CVE-2017-15843

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2017-15843

Due to a race condition in a bus driver, a double free in msm_bus_floor_vote_context() can potentially occur in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Source: CVE-2017-15843

CVE-2018-3572

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-3572

While processing a DSP buffer in an audio driver’s event handler, an index of a buffer is not checked before accessing the buffer in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Source: CVE-2018-3572

CVE-2018-3579

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-3579

In the WLAN driver in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel, event->num_entries_in_page is a value received from firmware that is not properly validated which can lead to a buffer over-read

Source: CVE-2018-3579

CVE-2018-3581

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-3581

In the WLAN driver in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel, a buffer overwrite can occur if the vdev_id received from firmware is larger than max_bssid.

Source: CVE-2018-3581

CVE-2018-5848

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-5848

In the function wmi_set_ie(), the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the ‘ie_len’ argument can cause a buffer overflow in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Source: CVE-2018-5848

CVE-2018-5847

Posted on 2018년 6월 13일2018년 6월 13일 by admin

CVE-2018-5847

Early or late retirement of rotation requests can result in a Use After Free condition in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Source: CVE-2018-5847