2 matches found
CVE-2017-14897
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while handling the QSEOSRPMBCHECKPROVSTATUSCOMMAND, a userspace buffer is directly accessed in kernel space...
CVE-2017-14897
The CVE-2017-14897 entry corresponds to a local privilege-elevation flaw in the RPMB/CAF kernel path used by Android on MSM/CAF builds. The described issue is that, while handling QSEOS_RPMB_CHECK_PROV_STATUS_COMMAND, a userspace buffer is directly accessed from kernel space, enabling local explo...