Integer Underflow and Buffer Over-read Vulnerability in Android CAF Firmware

Integer Underflow and Buffer Over-read Vulnerability in Android CAF Firmware

CVE-2018-5865 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

While processing a debug log event from firmware in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, an integer underflow and/or buffer over-read can occur.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.