Security Vulnerabilities - CVEs Published In June 2017
In all Android releases from CAF using the Linux kernel, libtomcrypt was updated.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, some regions of memory were not protected during boot.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, some validation of secure applications was not being performed.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, there was an issue related to RPMB processing.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, HLOS can overwite secure memory or read contents of the keystore.
CVSS Score
7.1
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, an integer underflow leading to buffer overflow vulnerability exists in a syscall handler.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, 3rd party TEEs have more privilege than intended.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a syscall handler.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a KGSL ioctl was not validating all of its parameters.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13