CVE-2015-9157
CVE-2015-9157 describes a race-condition in Android Qualcomm widevine support where rsp buffers passed to widevine commands in widevine_dash_cmd_handler() can be read or overflowed due to memory not being locked during time-of-check/time-of-use. Affected are Android devices with Qualcomm Snapdrag...