443 matches found
CVE-2019-9276
In the Android kernel in the synapticsdsxhtc touchscreen driver there is a possible out of bounds write due to a use after free. This could lead to a local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2019-9276
CVE-2019-9276 affects the Android kernel’s synaptics_dsx_htc touchscreen driver. It describes a possible out-of-bounds write caused by a use-after-free, enabling local escalation of privilege to SYSTEM without user interaction. Remedies are not detailed in this document, but the Pixel update bull...
CVE-2019-9273
In the Android kernel in the synapticsdsxhtc touchscreen driver there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2019-9273
CVE-2019-9273 is a local elevation-of-privilege vulnerability in the Android kernel’s synaptics_dsx_htc touchscreen driver, caused by an improper locking leading to a use-after-free. The issue could allow a privileged attacker to gain System execution rights without user interaction. Public detai...
CVE-2019-9248
In the Android kernel in the FingerTipS touchscreen driver there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2019-9248
The CVE-2019-9248 entry concerns the Android kernel FingerTipS touchscreen driver, where a missing bounds check enables a local out-of-bounds write that can escalate privileges to System with no user interaction. Affected component: FingerTipS touchscreen driver in the Android kernel. Root cause:...
Xiaomi Mi 5s Plus Permission License and Access Control Issues Vulnerability
Xiaomi Mi 5s Plus is a smartphone from Chinese company Xiaomi Technology Xiaomi. A security vulnerability exists in Xiaomi Mi 5s Plus. The vulnerability can be exploited by an attacker to cause an anomaly in the touchscreen with the help of a wireless signal between 198 kHz and 203 kHz...
CVE-2019-12762
Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch...
Design/Logic Flaw
Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch...
CVE-2019-12762
Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch...
CVE-2019-12762
CVE-2019-12762 affects Xiaomi Mi 5s Plus; a radio signal in the 198–203 kHz range can trigger touchscreen anomalies (Ghost Touch) via a transmitter/antenna hidden under a surface. Exploitation requires physical proximity; no remediation details are provided in the connected documents.
CVE-2018-20787
The ft5x46 touchscreen driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the size argument in tpdbgwrite in drivers/input/touchscreen/ft5x46/ft5x46ts.c. This is exploitable for a device crash v...
Integer overflow
The ft5x46 touchscreen driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the size argument in tpdbgwrite in drivers/input/touchscreen/ft5x46/ft5x46ts.c. This is exploitable for a device crash v...
CVE-2018-20787
The ft5x46 touchscreen driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the size argument in tpdbgwrite in drivers/input/touchscreen/ft5x46/ft5x46ts.c. This is exploitable for a device crash v...
CVE-2018-20787
Affected software: ft5x46 touchscreen driver used in custom Linux kernels on the Xiaomi perseus-p-oss MIX 3. The issue is an integer overflow in tpdbg_write within drivers/input/touchscreen/ft5x46/ft5x46_ts.c caused by missing checks on the size argument, leading to an OOPS. Impact is a potential...
CVE-2018-20787
The ft5x46 touchscreen driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the size argument in tpdbgwrite in drivers/input/touchscreen/ft5x46/ft5x46ts.c. This is exploitable for a device crash v...
Xiaomi Mi A2 Lite and RedMi6 pro Goodix GT9xx Touchscreen Driver Code Issue Vulnerability
The Xiaomi Mi A2 Lite and RedMi6 pro are both smartphones from Chinese company Xiaomi Technology Xiaomi. A code issue vulnerability exists in the Goodix GT9xx touchscreen driver used to customize the Goodix GT9xx in the Xiaomi Mi A2 Lite and RedMi6 pro 2018-08-27 and prior versions. The...
Null pointer dereference
The Goodix GT9xx touchscreen driver for custom Linux kernels on Xiaomi daisy-o-oss and daisy-p-oss as used in Mi A2 Lite and RedMi6 pro devices through 2018-08-27 has a NULL pointer dereference in kfree after a kmalloc failure in gtpreadColor in drivers/input/touchscreen/gt917d/gt9xx.c...
CVE-2018-19939
The Goodix GT9xx touchscreen driver for custom Linux kernels on Xiaomi daisy-o-oss and daisy-p-oss as used in Mi A2 Lite and RedMi6 pro devices through 2018-08-27 has a NULL pointer dereference in kfree after a kmalloc failure in gtpreadColor in drivers/input/touchscreen/gt917d/gt9xx.c...
CVE-2018-19939
The Goodix GT9xx touchscreen driver for custom Linux kernels on Xiaomi daisy-o-oss and daisy-p-oss as used in Mi A2 Lite and RedMi6 pro devices through 2018-08-27 has a NULL pointer dereference in kfree after a kmalloc failure in gtpreadColor in drivers/input/touchscreen/gt917d/gt9xx.c...