Buffer Over-read Vulnerability in dci_process_ctrl_status() in Android Releases from CAF

Buffer Over-read Vulnerability in dci_process_ctrl_status() in Android Releases from CAF

CVE-2018-5897 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

While reading the data from buffer in dci_process_ctrl_status() there can be buffer over-read problem if the len is not checked correctly in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.