Fix possible out of bound writes in csi driver in kernel-msm-camera CVE-2014-9868
asked 2017-07-27 12:45:44 +0300
This post is a wiki. Anyone with karma >75 is welcome to improve it.
drivers/media/platform/msm/camera_v2/sensor/csiphy/msm_csiphy.c in the Qualcomm components in Android before 2016-08-05 allows attackers to gain privileges via an application that provides a crafted mask value, aka Android internal bug 28749721 and Qualcomm internal bug CR511976. CVSS v3 Base Score: 7.8 High local
Patch is available on codeaurora.
file affected: kernel-adaptation-sbj-3.4.108.20161101.1/drivers/media/video/msm/csi/msm_csiphy.c lines 222; 248-252
@jovirkku this should have a "tracked by jolla" label
lpr ( 2017-09-19 09:38:06 +0300 )edit