CVE-2017-9696

CVE-2017-9696

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, buffer over-read is possible in camera driver function msm_isp_stop_stats_stream. Variable stream_cfg_cmd->num_streams is from userspace, and it is not checked against "MSM_ISP_STATS_MAX".

Source: CVE-2017-9696

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다