Buffer Over-read and Information Leak in WMI_APFIND Event Processing in Android Releases from CAF

Buffer Over-read and Information Leak in WMI_APFIND Event Processing in Android Releases from CAF

CVE-2018-5864 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

While processing a WMI_APFIND event in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a buffer over-read and information leak can potentially occur.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.