PT-2017-19135 · Mozilla+3 · Firefox Os+3
Published
2017-11-16
·
Updated
2017-11-30
·
CVE-2017-9721
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Android for MSM (affected versions not specified)
Firefox OS for MSM (affected versions not specified)
QRD Android (affected versions not specified)
Description
A buffer overflow issue exists in the boot loader while parsing the splash image, potentially affecting various Android releases that utilize the Linux kernel.
Recommendations
For Android for MSM, update the boot loader to a version that fixes the buffer overflow issue.
For Firefox OS for MSM, update the boot loader to a version that fixes the buffer overflow issue.
For QRD Android, update the boot loader to a version that fixes the buffer overflow issue.
As a temporary workaround, consider disabling the splash image parsing functionality in the boot loader until a patch is available.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Firefox Os
Linux Kernel
Qrd Android