PT-2018-10447 · Mozilla+3 · Firefox Os+3
Published
2018-09-18
·
Updated
2018-11-09
·
CVE-2018-11278
CVSS v2.0
6.6
Medium
| Vector | AV:L/AC:L/Au:N/C:C/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Android for MSM (affected versions not specified)
Firefox OS for MSM (affected versions not specified)
QRD Android (affected versions not specified)
Description
The issue arises when the Venus HW searches for a start code while decoding input bit stream buffers in the Linux kernel. If the start code is not found within the entire buffer, it results in an over-fetch beyond the allocation length, leading to a page fault.
Recommendations
For Android for MSM, update the Linux kernel to a version that includes the fix for this issue.
For Firefox OS for MSM, update the Linux kernel to a version that includes the fix for this issue.
For QRD Android, update the Linux kernel to a version that includes the fix for this issue.
As a temporary workaround, consider restricting access to the Venus HW decoding functionality to minimize the risk of exploitation.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Firefox Os
Linux Kernel
Qrd Android