CVE-2017-9697

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while reading command registration table entries in diagdbgfsreadtable...

CVE-2017-9686

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possible double free/use after free in the SPS driver when debugfs logging is used...

CVE-2017-9687

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, two concurrent threads/processes can write the value of "0" to the debugfs file that controls ipa ipc log which will lead to the double-free in ipclogcontextdestroy. Another issue is th...

Double free

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possible double free/use after free in the SPS driver when debugfs logging is used...

CVE-2017-9686

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possible double free/use after free in the SPS driver when debugfs logging is used...

CVE-2017-9687

CVE-2017-9687 involves a race between two concurrent threads/processes in Android for MSM (and related CAF/Linux kernel builds) where they can write the value "0" to a debugfs file that controls ipa ipc log. This can lead to a double-free in ipc_log_context_destroy() and a Use-After-Free when the...

CVE-2017-9686

The CVE-2017-9686 issue affects the Qualcomm SPS driver in Android environments (CAF/Linux kernel variants that include Android for MSM/CAF). Root cause is a double free/use-after-free in the SPS driver when debugfs logging is enabled. Reported impact includes local access with partial confidenti...

CVE-2017-10997

In all Qualcomm products with Android releases from CAF using the Linux kernel, using a debugfs node, a write to a PCIe register can cause corruption of kernel memory...

Memory corruption

In all Qualcomm products with Android releases from CAF using the Linux kernel, using a debugfs node, a write to a PCIe register can cause corruption of kernel memory...

CVE-2017-10997

CVE-2017-10997 affects Qualcomm PCIe (PCI driver) in CAF Android builds. The root cause is a write to a PCIe register via a debugfs node that can corrupt kernel memory, as described for all Qualcomm products with CAF Linux kernels. The vulnerability detail specifies the component as the PCI drive...

Google Android - pm_qos KASLR Bypass

Google Android - pmqos KASLR Bypass Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=971 The "pmqos" module exposes an interface to kernel space for specifying QoS dependencies. In order to aid in debugging this interface, the module exposes a "debugfs" interface, available under...

Google Android - pm_qos KASLR Bypass Vulnerability

Exploit for Android platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=971 The "pmqos" module exposes an interface to kernel space for specifying QoS dependencies. In order to aid in debugging this interface, the module exposes a "debugfs" interface,...

The vulnerability of the Linux operating system’s kernel allows a hacker to trigger a service failure or cause other adverse effects.

The vulnerability of the supplylminputwrite function in the drivers/thermal/supplylmcore.c file of the MSM Thermal kernel driver for the Linux operating system is caused by buffer overflow on the stack. Exploiting this vulnerability can allow an attacker to cause a system failure or other adverse...

CVE-2016-2063

Stack-based buffer overflow in the supplylminputwrite function in drivers/thermal/supplylmcore.c in the MSM Thermal driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to cause a denial of service o...

CVE-2016-2063

Stack-based buffer overflow in the supplylminputwrite function in drivers/thermal/supplylmcore.c in the MSM Thermal driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to cause a denial of service o...

Stack overflow

Stack-based buffer overflow in the supplylminputwrite function in drivers/thermal/supplylmcore.c in the MSM Thermal driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to cause a denial of service o...

UBUNTU-CVE-2016-2063

Stack-based buffer overflow in the supplylminputwrite function in drivers/thermal/supplylmcore.c in the MSM Thermal driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to cause a denial of service o...

CVE-2016-2063

Stack-based buffer overflow in the supplylminputwrite function in drivers/thermal/supplylmcore.c in the MSM Thermal driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to cause a denial of service o...

Android Qualcomm component lifting vulnerability (CNVD-2016-04851)

Android on Nexus 5 and 7 is an open source Linux-based operating system for the Nexus 5 and 7 smartphones developed by Google and the Open Handset Alliance OHA in the U.S. Qualcomm is one of the U.S.-based companies used in the Qualcomm devices. Qualcomm is a Qualcomm device-specific component us...

Qualcomm MSM debugfs kernel of any address written to the vulnerability analysis CVE-2 0 1 6-2 4 4 3-the vulnerability warning-the black bar safety net

Recently, Google posted 5 month patch update, this total fix 3 2 vulnerability. Which contains a Qualcomm vulnerability, the threat level of the high-risk, the CVE number for CVE-2 0 1 6-2 4 4 3,CNNVD coding for CNNVD-2 0 1 6 0 5-0 6 to 0. This paper mainly analyzes the vulnerability of the...