fix to prevent kernel heap buffer overflow in kernel-msm-actuator CVE-2014-9786 remote and fix to prevent untrusted pointer to lead DoS CVE-2014-9877 remote

asked 2017-07-27 11:24:38 +0300

this post is marked as community wiki

This post is a wiki. Anyone with karma >75 is welcome to improve it.

updated 2017-10-05 10:55:10 +0300

lpr gravatar image

Heap-based buffer overflow in drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in the Qualcomm components in Android before 2016-07-05 allows attackers to gain privileges via a crafted application, aka Android internal bug 28557260 and Qualcomm internal bug CR545979. CVSS v3 Base Score: 7.8 High remote

Patch is availableon codeaurora.org.

file affected: kernel-adaptation-sbj-3.4.108.20161101.1/drivers/media/video/msm/actuators/msm_actuator.c lines 152-153; 590-595 (except 592,593 original ", __func__" should not be forgotten)

drivers/media/video/msm/actuators/msm_actuator.c in the Qualcomm components in Android before 2016-08-05 mishandles a user-space pointer, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28768281 and Qualcomm internal bug CR547231.

Patch is availableon codeaurora.org.

file affected: kernel-adaptation-sbj-3.4.108.20161101.1/drivers/media/video/msm/actuators/msm_actuator.c lines 302-310 (2 lines to keep) ; 314-317; 333-338; insert in 355; 405-407; 425-427

edit retag flag offensive close delete

Comments

@jovirkku this should have a "tracked by jolla" label

lpr ( 2017-09-19 09:41:00 +0300 )edit