Security Advisory

CVE-2018-5821

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-04-03 17:00:00

Last updated 2024-09-17 00:11:34

Assigner qualcomm

State PUBLISHED

Description

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function wma_wow_wakeup_host_event(), wake_info->vdev_id is received from FW and is used directly as array index to access wma->interfaces whose max index should be (max_bssid-1). If wake_info->vdev_id is greater than or equal to max_bssid, an out-of-bounds read occurs.

← Browse all CVEs View on cve.org ↗