PT-2018-17204 · Mozilla+2 · Firefox Os+2

Publicado

2018-07-06

Atualizado

2018-08-27

CVE-2018-5872

CVSS v2.0

8.3

Alta

Vetor

AV:A/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Android versions prior to security patch level 2018-07-05

Description: The issue arises when parsing over-the-air information elements in Android releases that utilize the Linux kernel, specifically those from CAF, including Android for MSM, Firefox OS for MSM, and QRD Android. The problem occurs due to the use of an out-of-range pointer offset.

Recommendations: For Android versions prior to the security patch level 2018-07-05, apply the security patch to resolve the issue.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2018-5872

Produtos afetados

Android

Firefox Os

Linux Kernel

PT-2018-17204 · Mozilla+2 · Firefox Os+2

CVE-2018-5872

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4