CVE-2018-5843
In the function wmapdevdivinfoevthandler in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel, there is no upper bound check on the value event-numchainsvalid received from firmware which can lead to a buffer overwrite of the fixed size...