Integer Overflow and Buffer Overflow Vulnerability in WLAN Function of CAF Android Releases

Integer Overflow and Buffer Overflow Vulnerability in WLAN Function of CAF Android Releases

CVE-2018-11886 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check while calculating the MPDU data length will cause an integer overflow and then to buffer overflow in WLAN function.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.