PT-2018-6000 · Mozilla+3 · Firefox Os+3
Published
2018-03-16
·
Updated
2018-04-05
·
CVE-2017-15830
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Android for MSM versions (affected versions not specified)
Firefox OS for MSM versions (affected versions not specified)
QRD Android versions (affected versions not specified)
Description:
The issue is caused by improper ch list array index initialization in the function sme set plm request(), which can lead to a potential buffer overflow. This affects Android releases from CAF using the Linux kernel.
Recommendations:
For Android for MSM, update to a version that includes the fix for the improper ch list array index initialization in the sme set plm request() function.
For Firefox OS for MSM, update to a version that includes the fix for the improper ch list array index initialization in the sme set plm request() function.
For QRD Android, update to a version that includes the fix for the improper ch list array index initialization in the sme set plm request() function.
Fix
Buffer Overflow
Improper Validation of Array Index
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Android
Firefox Os
Linux Kernel
Qrd Android