← back
CVE-2017-17764

CVE-2017-17764

EPSS 0.2%
In all Qualcomm products with Android releases from CAF using the Linux kernel, the num_failure_info value from firmware is not properly validated in wma_rx_aggr_failure_event_handler() so that an integer overflow vulnerability in a buffer size calculation may potentially lead to a buffer overflow.
Affected products
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://source.android.com/security/bulletin/2018-02-01http://www.securityfocus.com/bid/102974