PT-2018-16072 · Mozilla+2 · Firefox Os+2
Published
2018-07-06
·
Updated
2018-08-28
·
CVE-2018-3577
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Android versions prior to security patch level 2018-06-05
Description
The issue arises when processing fragments and the fragment count becomes very large, leading to an integer overflow that can cause a buffer overflow. This occurs in Android releases that utilize the linux kernel, including Android for MSM, Firefox OS for MSM, and QRD Android.
Recommendations
For Android versions prior to the security patch level 2018-06-05, apply the security patch to resolve the issue.
Fix
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Firefox Os
Linux