Integer Overflow Vulnerability in Android Releases from CAF

Integer Overflow Vulnerability in Android Releases from CAF

CVE-2017-15818 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while loading a user application in qseecom, an integer overflow could potentially occur if the application partition size is rounded up to page_size.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.