Google: >> Android >> 7.2 Security Vulnerabilities
A elevation of privilege vulnerability in the Upstream kernel scsi driver. Product: Android. Versions: Android kernel. Android ID: A-35644812.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-09-08
In all Qualcomm products with Android releases from CAF using the Linux kernel, in function __mdss_fb_copy_destscaler_data(), variable ds_data[i].scale may still point to a user-provided address (which could point to arbitrary kernel address), so on an error condition, this user-provided address will be freed (arbitrary free), and continued operation could result in use after free condition.
CVSS Score
9.8
EPSS Score
0.002
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, in a video driver, memory corruption can potentially occur due to lack of bounds checking in a memcpy().
CVSS Score
7.8
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, if a userspace string is not NULL-terminated, kernel memory contents can leak to system logs.
CVSS Score
7.5
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, if a pointer argument coming from userspace is invalid, a driver may use an uninitialized structure to log an error message.
CVSS Score
7.5
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in two KGSL driver functions can lead to a Use After Free condition.
CVSS Score
4.7
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in a USB driver can lead to a Use After Free condition.
CVSS Score
7.0
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in a WLAN driver can lead to a Use After Free condition.
CVSS Score
8.1
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, there is no size check for the images being flashed onto the NAND memory in their respective partitions, so there is a possibility of writing beyond the intended partition.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-08-18
In all Qualcomm products with Android releases from CAF using the Linux kernel, when downloading a file, an excessive amount of memory may be consumed.
CVSS Score
9.8
EPSS Score
0.003
Published
2017-08-18