Integer Overflow Vulnerability in wma_ndp_end_indication_event_handler() Function

Integer Overflow Vulnerability in wma_ndp_end_indication_event_handler() Function

CVE-2017-15831 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the function wma_ndp_end_indication_event_handler(), there is no input validation check on a event_info value coming from firmware, which can cause an integer overflow and then leads to potential heap overwrite.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.