CVE-2017-18127
CVE-2017-18127 affects Android on Qualcomm Snapdragon devices (before 2018-04-05 patch level) where, while processing a SetParam command packet in the VR service, the code does not validate the extracted name_len and value_len values, potentially leading to a buffer overflow in subsequent calls t...