Integer Overflow Vulnerability in Allwinner R818 SoC Android Q SDK V1.0 ION Driver

CVE-2021-38787 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

There is an integer overflow in the ION driver "/dev/ion" of Allwinner R818 SoC Android Q SDK V1.0 that could use the ioctl cmd "COMPAT_ION_IOC_SUNXI_FLUSH_RANGE" to cause a system crash (denial of service).

Learn more about our Cis Benchmark Audit For Google Android.