Vulnerability Details CVE-2016-5861
In a display driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable controlled by userspace is used to calculate offsets and sizes for copy operations, which could result in heap overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.4%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 8.3
References
- http://www.securitytracker.com/id/1038623
- https://source.android.com/security/bulletin/2017-06-01
- https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=cf3c97b8b6165f13810e530068fbf94b07f1f77d
- http://www.securitytracker.com/id/1038623
- https://source.android.com/security/bulletin/2017-06-01
- https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=cf3c97b8b6165f13810e530068fbf94b07f1f77d
Products affected by CVE-2016-5861
-
cpe:2.3:o:google:android:-
-
cpe:2.3:o:google:android:1.0
-
cpe:2.3:o:google:android:1.1
-
cpe:2.3:o:google:android:1.5
-
cpe:2.3:o:google:android:1.6
-
cpe:2.3:o:google:android:10.0
-
cpe:2.3:o:google:android:11.0
-
cpe:2.3:o:google:android:12.0
-
cpe:2.3:o:google:android:12.0l
-
cpe:2.3:o:google:android:12.1
-
cpe:2.3:o:google:android:12l
-
cpe:2.3:o:google:android:13.0
-
cpe:2.3:o:google:android:13.0.0
-
cpe:2.3:o:google:android:14.0
-
cpe:2.3:o:google:android:15.0
-
cpe:2.3:o:google:android:2.0
-
cpe:2.3:o:google:android:2.0.1
-
cpe:2.3:o:google:android:2.0.3
-
cpe:2.3:o:google:android:2.1
-
cpe:2.3:o:google:android:2.2
-
cpe:2.3:o:google:android:2.2.1
-
cpe:2.3:o:google:android:2.2.2
-
cpe:2.3:o:google:android:2.2.3
-
cpe:2.3:o:google:android:2.3
-
cpe:2.3:o:google:android:2.3.1
-
cpe:2.3:o:google:android:2.3.2
-
cpe:2.3:o:google:android:2.3.3
-
cpe:2.3:o:google:android:2.3.4
-
cpe:2.3:o:google:android:2.3.5
-
cpe:2.3:o:google:android:2.3.6
-
cpe:2.3:o:google:android:2.3.7
-
cpe:2.3:o:google:android:2020-06-01
-
cpe:2.3:o:google:android:3.0
-
cpe:2.3:o:google:android:3.1
-
cpe:2.3:o:google:android:3.2
-
cpe:2.3:o:google:android:3.2.1
-
cpe:2.3:o:google:android:3.2.2
-
cpe:2.3:o:google:android:3.2.4
-
cpe:2.3:o:google:android:3.2.6
-
cpe:2.3:o:google:android:4.0
-
cpe:2.3:o:google:android:4.0.1
-
cpe:2.3:o:google:android:4.0.2
-
cpe:2.3:o:google:android:4.0.3
-
cpe:2.3:o:google:android:4.0.4
-
cpe:2.3:o:google:android:4.1
-
cpe:2.3:o:google:android:4.1.1
-
cpe:2.3:o:google:android:4.1.2
-
cpe:2.3:o:google:android:4.2
-
cpe:2.3:o:google:android:4.2.1
-
cpe:2.3:o:google:android:4.2.2
-
cpe:2.3:o:google:android:4.3
-
cpe:2.3:o:google:android:4.3.1
-
cpe:2.3:o:google:android:4.4
-
cpe:2.3:o:google:android:4.4.1
-
cpe:2.3:o:google:android:4.4.2
-
cpe:2.3:o:google:android:4.4.3
-
cpe:2.3:o:google:android:4.4.4
-
cpe:2.3:o:google:android:5.0
-
cpe:2.3:o:google:android:5.0.1
-
cpe:2.3:o:google:android:5.0.2
-
cpe:2.3:o:google:android:5.1
-
cpe:2.3:o:google:android:5.1.0
-
cpe:2.3:o:google:android:5.1.1
-
cpe:2.3:o:google:android:6.0
-
cpe:2.3:o:google:android:6.0.1
-
cpe:2.3:o:google:android:7.0
-
cpe:2.3:o:google:android:7.1
-
cpe:2.3:o:google:android:7.1.0
-
cpe:2.3:o:google:android:7.1.1
-
cpe:2.3:o:google:android:7.1.2
-
cpe:2.3:o:google:android:7.2
-
cpe:2.3:o:google:android:8.0
-
cpe:2.3:o:google:android:8.1
-
cpe:2.3:o:google:android:9.0