Unbounded Value Vulnerability in wma_p2p_noa_event_handler() Function

Unbounded Value Vulnerability in wma_p2p_noa_event_handler() Function

CVE-2017-15821 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the function wma_p2p_noa_event_handler(), there is no bound check on a value coming from firmware which can potentially lead to a buffer overwrite.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.