CVE-2017-14876

Publication date

2018-03-30 21:00:00

Family

qualcomm

State

PUBLISHED

Description

In msm_ispif_config_stereo() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-21, the parameter params->entries[i].vfe_intf comes from userspace without any bounds check which could potentially result in a kernel out-of-bounds write.