Slab Out of Bound Access Vulnerability in Android for MSM, Firefox OS for MSM, QRD Android

Slab Out of Bound Access Vulnerability in Android for MSM, Firefox OS for MSM, QRD Android

CVE-2017-14879 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, by calling an IPA ioctl and searching for routing/filer/hdr rule handle from ipa_idr pointer using ipa_idr_find() function, the wrong structure pointer can be returned resulting in a slab out of bound access in the IPA driver.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.