Array Index Out of Bounds Vulnerability in USB StrSerialDescriptor Array Processing in Android Releases from CAF

Array Index Out of Bounds Vulnerability in USB StrSerialDescriptor Array Processing in Android Releases from CAF

CVE-2018-5887 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

While processing the USB StrSerialDescriptor array, an array index out of bounds can occur in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.