CVE-2014-9796

app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 2013 devices does not validate the page size in the kernel header, which allows attackers to bypass intended access restrictions via a crafted boot image, aka Android internal bug 28820722 and Qualcomm...

Design/Logic Flaw

app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 2013 devices does not validate the page size in the kernel header, which allows attackers to bypass intended access restrictions via a crafted boot image, aka Android internal bug 28820722 and Qualcomm...

CVE-2014-9796

CVE-2014-9796 affects Android on Nexus 5 and Nexus 7 (2013) via the Qualcomm component’s app/aboot/aboot.c, where the kernel header page size is not validated, enabling a crafted boot image to bypass access restrictions. Public details are tied to Android/Qualcomm bug references (28820722, CR6847...

Memory corruption

app/aboot/aboot.c in the Little Kernel LK bootloader, as distributed with Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory...