Integer Overflow Leading to Heap Buffer Overflow in Android for MSM, Firefox OS for MSM, QRD Android, and CAF Android Releases

Integer Overflow Leading to Heap Buffer Overflow in Android for MSM, Firefox OS for MSM, QRD Android, and CAF Android Releases

CVE-2017-14887 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the processing of messages of type eWNI_SME_MODIFY_ADDITIONAL_IES, an integer overflow leading to heap buffer overflow may potentially occur.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.