Stack Corruption Vulnerability in HandleMetaImgFlash Function

Stack Corruption Vulnerability in HandleMetaImgFlash Function

CVE-2017-11007 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possibility of stack corruption due to buffer overflow of Partition name while converting ascii string to unicode string in function HandleMetaImgFlash.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.