Memory Allocation Failure Vulnerability in QSEE App TQS on Qualcomm Snapdragon Mobile SD Processors

Memory Allocation Failure Vulnerability in QSEE App TQS on Qualcomm Snapdragon Mobile SD Processors

CVE-2015-9162 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in the function "Certificate_CreateWithBuffer" in the QSEE app TQS, in case of memory allocation failure, we free the memory and return the pointer without setting it to NULL.

Learn more about our Cis Benchmark Audit For Google Android.