Buffer Overflow Vulnerability in ConvertQosMapsetFrame() in Android for MSM, Firefox OS for MSM, QRD Android, and CAF Android Releases

CVE-2017-11053 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when qos map set IE of length less than 16 is received in association response or in qos map configure action frame, a buffer overflow can potentially occur in ConvertQosMapsetFrame().

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.