Vulnerability: Unauthorized Cache Maintenance on Insecure ION Buffer in Android Releases

Vulnerability: Unauthorized Cache Maintenance on Insecure ION Buffer in Android Releases

CVE-2018-3574 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, userspace can request ION cache maintenance on a secure ION buffer for which the ION_FLAG_SECURE ion flag is not set and cause the kernel to attempt to perform cache maintenance on memory which does not belong to HLOS.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.