Buffer Overflow Vulnerability in Android Releases from CAF with Linux Kernel

Buffer Overflow Vulnerability in Android Releases from CAF with Linux Kernel

CVE-2018-11868 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of length validation check for value received from firmware can lead to buffer overflow in nan response event handler.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.