Android-msm@3.10.27 Security Vulnerabilities and Issues — Android-msm@3.10.27 CVE List

Lucene search

CodeauroraAndroid-msm3.10.27

8 matches found

CVE•added 2014/08/31 10:55 a.m.•695 views

CVE-2013-2597

Stack-based buffer overflow in the acdb_ioctl function in audio_acdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges via an application that leve...

8.4CVSS7.3AI score0.04612EPSS

CVE•added 2014/08/31 10:55 a.m.•42 views

CVE-2013-2595

The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, enables MSM_CAM_IOCTL_SET_MEM_MAP_INFO ioctl calls for an unrestricted mmap interface, which al...

7.2CVSS6.7AI score0.00953EPSS

CVE•added 2014/08/31 10:55 a.m.•34 views

CVE-2013-6124

The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a (1) chown or (2) chmod command, as demonstrated by changing the permissions of an arbitrary fi...

3.3CVSS6.6AI score0.00032EPSS

CVE•added 2013/11/30 2:55 a.m.•33 views

CVE-2013-6392

The genlock_dev_ioctl function in genlock.c in the Genlock driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly initialize a certain data structure, which allows local users to obtain sensitive info...

4.9CVSS5.7AI score0.00111EPSS

CVE•added 2014/08/01 11:13 a.m.•31 views

CVE-2014-0972

The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly prevent write access to IOMMU context registers, which allows local users to select a custom page table, and consequently write...

7.2CVSS6.6AI score0.00047EPSS

CVE•added 2014/08/31 10:55 a.m.•29 views

CVE-2013-2599

A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.3.x enables debug logging, which allows attackers to obtain sensitive disk-encryption pa...

5CVSS6.5AI score0.00127EPSS

CVE•added 2014/02/10 6:15 p.m.•28 views

CVE-2013-4736

Multiple integer overflows in the JPEG engine drivers in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (system crash) via a large number of...

7.8CVSS6.8AI score0.00525EPSS

CVE•added 2014/08/31 10:55 a.m.•27 views

CVE-2013-2598

app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory...

6.6CVSS7AI score0.00049EPSS