Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-05 | CVE-2017-11031 | Use After Free vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the VIDIOC_G_SDE_ROTATOR_FENCE ioctl command can be used to cause a Use After Free condition. | 7.5 |
| 2017-12-05 | CVE-2017-11030 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the HDMI video driver function hdmi_edid_sysfs_rda_res_info(), userspace can perform an arbitrary write into kernel memory. | 7.8 |
| 2017-12-05 | CVE-2017-11019 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the fd allocated during the get_metadata was not closed even though the buffer allocated to the fd was freed. | 7.8 |
| 2017-12-05 | CVE-2017-11016 | Improper Resource Shutdown or Release vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when memory allocation fails while creating a calibration block in create_cal_block stale pointers are left uncleared. | 7.8 |
| 2017-11-16 | CVE-2017-0865 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek soc driver. | 7.8 |
| 2017-11-16 | CVE-2017-0864 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek ioctl (flashlight). | 7.8 |
| 2017-11-16 | CVE-2017-0863 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Upstream kernel video driver. | 7.8 |
| 2017-11-16 | CVE-2017-0862 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Upstream kernel kernel. | 7.8 |
| 2017-11-16 | CVE-2017-0861 | Use After Free vulnerability in Google Android Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors. | 7.8 |
| 2017-11-16 | CVE-2017-0859 | Unspecified vulnerability in Google Android Another vulnerability in the Android media framework (n/a). | 7.5 |