Vulnerability in Qualcomm Audio Driver Allows Code Execution Despite Incorrect Length Value

Vulnerability in Qualcomm Audio Driver Allows Code Execution Despite Incorrect Length Value

CVE-2016-5853 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

In an audio driver in all Qualcomm products with Android releases from CAF using the Linux kernel, when a sanity check encounters a length value not in the correct range, an error message is printed, but code execution continues in the same way as for a correct length value.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.