EUVD-2018-21152

Malware in sbrugna...

kernel: nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Fix use-after-free bugs caused by pn532cmdtimeout When the pn532 uart device is detaching, the pn532uartremove is called. But there are no functions in pn532uartremove that could delete the cmdtimeout timer, which wil...

CVE-2018-9558

In rwt2thandletlvdetect of rwt2tndef.cc, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC kernel with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Version...

Out-of-bounds

In rwt2thandletlvdetect of rwt2tndef.cc, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC kernel with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Version...

CVE-2018-9558

CVE-2018-9558 describes an out-of-bounds write in the NFC kernel due to a missing bounds check in rw_t2t_handle_tlv_detect (rw_t2t_ndef.cc). This could enable local elevation of privilege on Android devices without requiring prior privileges, with user interaction not strictly required for exploi...