← back
CVE-2017-9704

CVE-2017-9704

EPSS 0.2%
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, There is no synchronization between msm_vb2 buffer operations which can lead to use after free.
Affected products
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.codeaurora.org/security-bulletin/2018/12/03/december-2018-code-aurora-security-bulletin