Use After Free Vulnerability in Snapdragon Mobile and Snapdragon Wear

Use After Free Vulnerability in Snapdragon Mobile and Snapdragon Wear

CVE-2018-5891 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in Snapdragon Mobile and Snapdragon Wear.

Learn more about our Internal Network Penetration Testing.