Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-30 | CVE-2017-15852 | Information Exposure vulnerability in Google Android Information leak of the ISPIF base address in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the camera driver. | 7.8 |
| 2018-03-30 | CVE-2017-15846 | NULL Pointer Dereference vulnerability in Google Android In the video_ioctl2() function in the camera driver in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-09-16, an untrusted pointer dereference may potentially occur. | 7.8 |
| 2018-03-30 | CVE-2017-15826 | Double Free vulnerability in Google Android Due to a race condition in MDSS rotator in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-20, a double free vulnerability may potentially exist when two threads free the same perf structures. | 7.8 |
| 2018-03-30 | CVE-2017-15823 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In spectral_create_samp_msg() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-11, some values from firmware are not properly validated potentially leading to a buffer overflow. | 7.8 |
| 2018-03-30 | CVE-2017-14892 | Improper Input Validation vulnerability in Google Android In the function msm_pcm_hw_params() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-09-19, the return value of q6asm_open_shared_io() is not checked properly potentially leading to a possible dangling pointer access. | 7.8 |
| 2018-03-30 | CVE-2017-14891 | Information Exposure vulnerability in Google Android In the KGSL driver function _gpuobj_map_useraddr() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-12, the contents of the stack can get leaked due to an uninitialized variable. | 5.3 |
| 2018-03-30 | CVE-2017-14883 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In the function wma_unified_power_debug_stats_event_handler() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-18, if the value param_buf->num_debug_register received from the FW command buffer is close to max of uint32, then the computation performed using this variable to calculate stats_registers_len may overflow to a smaller value leading to less than required memory allocated for power_stats_results and potentially a buffer overflow while copying the FW buffer to local buffer. | 9.8 |
| 2018-03-30 | CVE-2017-14881 | Use After Free vulnerability in Google Android While calling the IPA IOCTL handler for IPA_IOC_ADD_HDR_PROC_CTX in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-13, a use-after-free condition may potentially occur. | 9.8 |
| 2018-03-30 | CVE-2017-14877 | Use After Free vulnerability in Google Android While the IPA driver in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-08-31 is processing IOCTL commands there is no mutex lock of allocated memory. | 9.8 |
| 2018-03-30 | CVE-2017-14876 | Out-of-bounds Write vulnerability in Google Android In msm_ispif_config_stereo() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-21, the parameter params->entries[i].vfe_intf comes from userspace without any bounds check which could potentially result in a kernel out-of-bounds write. | 9.8 |