Buffer Overflow Vulnerability in ddr_devfreq Driver: Privilege Escalation and System Crash

Buffer Overflow Vulnerability in ddr_devfreq Driver: Privilege Escalation and System Crash

CVE-2017-2698 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The ddr_devfreq driver in versions earlier than GRA-UL00C00B197 has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege.

Learn more about our Cis Benchmark Audit For Google Android.