PT-2018-19016 · Google · Android

Publicado

2018-11-06

Atualizado

2018-12-13

CVE-2018-9455

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Android versions 6.0 through 8.1

Description The issue is related to an incorrect bounds check in the sdpu extract attr seq function of sdp utils.cc, which could lead to a remote denial of service. No additional execution privileges are needed for exploitation, and user interaction is not required.

Recommendations For Android versions 6.0 through 8.1, update to a version that contains a fix for this issue.

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

CVE-2018-9455

Produtos afetados

Android

PT-2018-19016 · Google · Android

CVE-2018-9455

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4