Double Free Vulnerability in Android WLAN Driver Command IOCTL

Double Free Vulnerability in Android WLAN Driver Command IOCTL

CVE-2018-11840 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the WLAN driver command ioctl a temporary buffer used to construct the reply message may be freed twice.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.