CVE-2015-8937

Name of the Vulnerable Software and Affected Versions Android versions prior to 2016-08-05

Description The issue is related to the mishandling of a socket process in the diagchar core.c file of the Qualcomm components in Android. This allows attackers to gain privileges via a crafted application. The estimated number of potentially affected devices is not specified, but it is known to affect Nexus 5, 6, and 7 (2013) devices.

Recommendations For Android versions prior to 2016-08-05, update the operating system to a version released after 2016-08-05 to resolve the issue. As a temporary workaround, consider restricting the use of the diagchar core.c file until a patch is available.