Buffer Overflow Vulnerability in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs

Buffer Overflow Vulnerability in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs

CVE-2017-11081 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a potential buffer overflow vulnerability in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs as buffers defined in this API can hold maximum 32 bytes but data more than 32 bytes can get copied.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.