Unvalidated Pointer Vulnerability in Android CAF Releases

Unvalidated Pointer Vulnerability in Android CAF Releases

CVE-2018-5886 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

A pointer in an ADSPRPC command is not properly validated in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), which can lead to kernel memory being accessed.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.