CVE-2015-9222

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05 security patch level

Description The issue is related to the processing of erroneous bitstreams in Android, which may result in a hardware freeze. Normally, the firmware should detect the hardware freeze based on a watchdog timer, but since the watchdog timer is not enabled, an infinite loop occurs, leading to a device freeze. This can be exploited by a remote attacker to cause a denial of service.

Recommendations For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue. As a temporary workaround, consider disabling the affected Qualcomm components until a patch is available. Restrict access to the device to minimize the risk of exploitation.