Buffer Overflow Vulnerability in Android for MSM, Firefox OS for MSM, QRD Android, and CAF Android Releases

Buffer Overflow Vulnerability in Android for MSM, Firefox OS for MSM, QRD Android, and CAF Android Releases

CVE-2017-18055 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for wmi_event->num_vdev_mac_entries in wma_pdev_set_hw_mode_resp_evt_handler(), which is received from firmware, leads to potential buffer overflow.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.