Vulnerability: Use-After-Free in set_output_buffers() Function in Android Video Driver

Vulnerability: Use-After-Free in set_output_buffers() Function in Android Video Driver

CVE-2018-5844 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In the video driver function set_output_buffers(), binfo can be accessed after being freed in a failure scenario in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.