Race Condition Vulnerability in DIAG Services Leading to Out-of-Boundary Access

Race Condition Vulnerability in DIAG Services Leading to Out-of-Boundary Access

CVE-2018-5905 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, a race condition while accessing num of clients in DIAG services can lead to out of boundary access.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.