Out of Bounds Memory Read Vulnerability in Android for MSM, Firefox OS for MSM, QRD Android

Out of Bounds Memory Read Vulnerability in Android for MSM, Firefox OS for MSM, QRD Android

CVE-2017-18052 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for cmpl_params->num_reports, param_buf->desc_ids and param_buf->status in wma_mgmt_tx_bundle_completion_handler(), which is received from firmware, leads to potential out of bounds memory read.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.