Race conditions in ADSPRPC driver for Linux kernel 3.x allow denial of service and potential impact via COMPAT_FASTRPC_IOCTL_INVOKE_FD ioctl call

Race conditions in ADSPRPC driver for Linux kernel 3.x allow denial of service and potential impact via COMPAT_FASTRPC_IOCTL_INVOKE_FD ioctl call

CVE-2015-0572 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Multiple race conditions in drivers/char/adsprpc.c and drivers/char/adsprpc_compat.c in the ADSPRPC driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (zero-value write) or possibly have unspecified other impact via a COMPAT_FASTRPC_IOCTL_INVOKE_FD ioctl call.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.