CVE-2018-11895

CVE-2018-11895

EPSS 0.2%

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper length check Validation in WLAN function can lead to driver writes the default rsn capabilities to the memory not allocated to the frame.

Produtos afetados

Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=3dfe93028c0c6564db7aa4607a85413195925aa4 https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin http://www.securityfocus.com/bid/107770