CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8247
https://notcve.org/view.php?id=CVE-2017-8247
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, if there is more than one thread doing the device open operation, the device may be opened more than once. This would lead to get_pid being called more than once, however put_pid being called only once in function "msm_close". En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, si hay más de un subproceso realizando la operación de apertura del dispositivo, éste podría abrirse más de u... • http://www.securityfocus.com/bid/100658 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11041
https://notcve.org/view.php?id=CVE-2017-11041
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, an output buffer is accessed in one thread and can be potentially freed in another. En todos los productos Qualcomm con sistemas operativos Android distribuidos desde el CAF utilizando el kernel de Linux, se puede acceder a un búfer de salida en un hilo y se podría liberar en otro. • http://www.securityfocus.com/bid/100658 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11000
https://notcve.org/view.php?id=CVE-2017-11000
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, in an ISP Camera kernel driver function, an incorrect bounds check may potentially lead to an out-of-bounds write. En todos los productos Qualcomm con sistemas operativos Android distribuidos desde el CAF utilizando el kernel de Linux, en una función del driver del kernel de ISP Camera, una comprobación en los límites incorrectos podría provocar una escritura fuera de límites. • http://www.securityfocus.com/bid/100658 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9677
https://notcve.org/view.php?id=CVE-2017-9677
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, in function msm_compr_ioctl_shared, variable "ddp->params_length" could be accessed and modified by multiple threads, while it is not protected with locks. If one thread is running, while another thread is setting data, race conditions will happen. If "ddp->params_length" is set to a big number, a buffer overflow will occur. En la función msm_compr_ioctl_shared en todos los productos Qualcomm con distribuciones Android desde CAF... • http://www.securityfocus.com/bid/100658 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0798
https://notcve.org/view.php?id=CVE-2017-0798
08 Sep 2017 — A elevation of privilege vulnerability in the MediaTek kernel. Product: Android. Versions: Android kernel. Android ID: A-36100671. References: M-ALPS03365532. • http://www.securityfocus.com/bid/100652 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0803
https://notcve.org/view.php?id=CVE-2017-0803
08 Sep 2017 — A elevation of privilege vulnerability in the MediaTek accessory detector driver. Product: Android. Versions: Android kernel. Android ID: A-36136137. References: M-ALPS03361477. • http://www.securityfocus.com/bid/100652 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0796
https://notcve.org/view.php?id=CVE-2017-0796
08 Sep 2017 — A elevation of privilege vulnerability in the MediaTek auxadc driver. Product: Android. Versions: Android kernel. Android ID: A-62458865. References: M-ALPS03353884, M-ALPS03353886, M-ALPS03353887. • http://www.securityfocus.com/bid/100652 •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0793
https://notcve.org/view.php?id=CVE-2017-0793
08 Sep 2017 — A information disclosure vulnerability in the N/A memory subsystem. Product: Android. Versions: Android kernel. Android ID: A-35764946. Existe una vulnerabilidad de revelación de información en el subsistema de memoria N/A. • http://www.securityfocus.com/bid/100670 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0794 – Ubuntu Security Notice USN-3798-2
https://notcve.org/view.php?id=CVE-2017-0794
08 Sep 2017 — A elevation of privilege vulnerability in the Upstream kernel scsi driver. Product: Android. Versions: Android kernel. Android ID: A-35644812. Existe una vulnerabilidad de elevación de privilegios en el driver scsi del kernel Upstream. • http://www.securityfocus.com/bid/100667 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0801
https://notcve.org/view.php?id=CVE-2017-0801
08 Sep 2017 — A elevation of privilege vulnerability in the MediaTek libmtkomxvdec. Product: Android. Versions: Android kernel. Android ID: A-38447970. References: M-ALPS03337980. • http://www.securityfocus.com/bid/100652 •