Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Android
(Google)| Repositories | https://github.com/torvalds/linux |
| #Vulnerabilities | 7304 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-09-21 | CVE-2017-8250 | In all Qualcomm products with Android releases from CAF using the Linux kernel, user controlled variables "nr_cmds" and "nr_bos" number are passed across functions without any check. An integer overflow to buffer overflow (with a smaller buffer allocated) may occur when they are too large or negative. | Android | 7.8 | ||
| 2017-09-21 | CVE-2017-8247 | In all Qualcomm products with Android releases from CAF using the Linux kernel, if there is more than one thread doing the device open operation, the device may be opened more than once. This would lead to get_pid being called more than once, however put_pid being called only once in function "msm_close". | Android | 7.8 | ||
| 2017-06-13 | CVE-2017-8240 | In all Android releases from CAF using the Linux kernel, a kernel driver has an off-by-one buffer over-read vulnerability. | Android | 7.8 | ||
| 2017-06-13 | CVE-2017-8235 | In all Android releases from CAF using the Linux kernel, a memory structure in a camera driver is not properly protected. | Android | 5.5 | ||
| 2017-06-13 | CVE-2017-8234 | In all Android releases from CAF using the Linux kernel, an out of bounds access can potentially occur in a camera function. | Android | 7.8 | ||
| 2017-06-13 | CVE-2017-7365 | In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated. | Android | 7.8 | ||
| 2018-04-04 | CVE-2017-6424 | An elevation of privilege vulnerability in the Qualcomm WiFi driver. Product: Android. Versions: Android kernel. Android ID: A-32086742. References: QC-CR#1102648. | Android | 7.0 | ||
| 2018-04-04 | CVE-2017-6423 | An elevation of privilege vulnerability in the Qualcomm kyro L2 driver. Product: Android. Versions: Android kernel. Android ID: A-32831370. References: QC-CR#1103158. | Android | 7.0 | ||
| 2017-08-16 | CVE-2017-6421 | In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow. | Android | 8.8 | ||
| 2018-05-10 | CVE-2017-6289 | In Android before the 2018-05-05 security patch level, NVIDIA Trusted Execution Environment (TEE) contains a memory corruption (due to unusual root cause) vulnerability, which if run within the speculative execution of the TEE, may lead to local escalation of privileges. This issue is rated as critical. Android: A-72830049. Reference: N-CVE-2017-6289. | Android | 7.8 |