Security Advisory

CVE-2017-15854

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-12 20:00:00

Last updated 2024-09-17 02:11:43

Assigner qualcomm

State PUBLISHED

Description

The value of fix_param->num_chans is received from firmware and if it is too large, an integer overflow can occur in wma_radio_chan_stats_event_handler() for the derived length len leading to a subsequent buffer overflow in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

← Browse all CVEs View on cve.org ↗