CVE-2014-9871

Name of the Vulnerable Software and Affected Versions Android versions prior to 2016-08-05

Description The issue is caused by multiple buffer overflows in the msm isp util.c file within the Qualcomm components. This allows attackers to gain privileges via a crafted application. The estimated number of potentially affected devices is not specified.

Recommendations For Android versions prior to 2016-08-05, update to a version released after 2016-08-05 to resolve the issue. As a temporary workaround, consider restricting the use of the msm isp util.c file until a patch is available. Avoid using crafted applications that could exploit the buffer overflows in the msm isp util.c file.