Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-15 | CVE-2017-18169 | Reachable Assertion vulnerability in Google Android User process can perform the kernel DOS in ashmem when doing cache maintenance operation in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel. | 5.5 |
| 2018-06-15 | CVE-2018-5857 | Use After Free vulnerability in Google Android In the WCD CPE codec, a Use After Free condition can occur in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel. | 7.8 |
| 2018-06-15 | CVE-2018-5854 | Out-of-bounds Write vulnerability in Google Android A stack-based buffer overflow can occur in fastboot from all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel. | 7.8 |
| 2018-06-15 | CVE-2018-12440 | Information Exposure vulnerability in Google Boringssl 20180614 BoringSSL through 2018-06-14 allows a memory-cache side-channel attack on DSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. | 4.7 |
| 2018-06-13 | CVE-2018-10405 | Improper Certificate Validation vulnerability in Google Santa An issue was discovered in Google Santa and molcodesignchecker. | 7.8 |
| 2018-06-12 | CVE-2018-5851 | Improper Validation of Array Index vulnerability in Google Android Buffer over flow can occur while processing a HTT_T2H_MSG_TYPE_TX_COMPL_IND message with an out-of-range num_msdus value in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel. | 7.8 |
| 2018-06-12 | CVE-2018-5849 | Use After Free vulnerability in Google Android Due to a race condition in the QTEECOM driver in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel, when more than one HLOS client loads the same TA, a Use After Free condition can occur. | 7.0 |
| 2018-06-12 | CVE-2018-5848 | Integer Overflow or Wraparound vulnerability in multiple products In the function wmi_set_ie(), the length validation code does not handle unsigned integer overflow properly. | 7.8 |
| 2018-06-12 | CVE-2018-5847 | Use After Free vulnerability in Google Android Early or late retirement of rotation requests can result in a Use After Free condition in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel. | 7.8 |
| 2018-06-12 | CVE-2018-5844 | Use After Free vulnerability in Google Android In the video driver function set_output_buffers(), binfo can be accessed after being freed in a failure scenario in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel. | 7.8 |