← back
CVE-2018-11889

CVE-2018-11889

EPSS 0.2%
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, when requesting rssi timeout, access invalid memory may occur since local variable 'context' stack data of wlan function is free.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=4e9edcdbb8d7087dd2c7cc250813426c9c27c4d2https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletinhttp://www.securityfocus.com/bid/107770