CVE-2013-4738

Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.x

Description The issue is related to multiple stack-based buffer overflows in the MSM camera driver. Attackers can gain privileges via a crafted VIDIOC MSM VPE DEQUEUE STREAM BUFF INFO ioctl call or a crafted VIDIOC MSM CPP DEQUEUE STREAM BUFF INFO ioctl call. The affected files are msm vpe.c and msm cpp.c, which are part of the drivers/media/platform/msm/camera v2/pproc directory.

Recommendations For Linux kernel version 3.x, update to a version that includes the fix for the MSM camera driver issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.