Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-06 | CVE-2018-5907 | Integer Overflow or Wraparound vulnerability in Google Android Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel. | 7.8 |
| 2018-07-06 | CVE-2018-5886 | Out-of-bounds Read vulnerability in Google Android A pointer in an ADSPRPC command is not properly validated in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), which can lead to kernel memory being accessed. | 7.5 |
| 2018-07-06 | CVE-2018-5873 | Use After Free vulnerability in multiple products An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. | 7.0 |
| 2018-07-06 | CVE-2018-5872 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android While parsing over-the-air information elements in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, the use of an out-of-range pointer offset can occur. | 8.0 |
| 2018-07-06 | CVE-2018-5862 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In __wlan_hdd_cfg80211_vendor_scan() in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, when SCAN_SSIDS and QCA_WLAN_VENDOR_ATTR_SCAN_FREQUENCIES are parsed, a buffer overwrite can potentially occur. | 7.8 |
| 2018-07-06 | CVE-2018-5859 | Use After Free vulnerability in Google Android Due to a race condition in the MDSS MDP driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a Use After Free condition can occur. | 7.0 |
| 2018-07-06 | CVE-2018-5858 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In the audio debugfs in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, out of bounds access can occur. | 7.8 |
| 2018-07-06 | CVE-2018-5853 | Use After Free vulnerability in Google Android A race condition exists in a driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-05-05 potentially leading to a use-after-free condition. | 7.0 |
| 2018-07-06 | CVE-2018-3587 | Use After Free vulnerability in Google Android In a firmware memory dump feature in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), a Use After Free condition can occur. | 7.8 |
| 2018-07-06 | CVE-2018-3570 | NULL Pointer Dereference vulnerability in Google Android In the cpuidle driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel, the list_for_each macro was not used correctly which could lead to an untrusted pointer dereference. | 7.8 |