PT-2018-4537 · Google+1 · Android+2
Published
2018-04-18
·
Updated
2018-05-09
·
CVE-2015-9204
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Android versions prior to 2018-04-05 security patch level
Description
A buffer overread issue occurs in the
playready leavedomain generate challenge() function when the cchFriendlyName is greater than TZ PR MAX NAME LEN. This issue affects Android on various Qualcomm Snapdragon Mobile and Snapdragon Wear platforms.Recommendations
For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Qualcomm Snapdragon Mobile
Qualcomm Snapdragon Wear