CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11062
https://notcve.org/view.php?id=CVE-2017-11062
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, currently attributes are not validated in __wlan_hdd_cfg80211_do_acs which can potentially lead to a buffer overread. En Android for MSM, Firefox OS for MSM, QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, los atributos no se validan actualmente en _wlan_hdd_cfg80211_do_acs, lo que puede provocar una sobrelectura de búfer. • http://www.securityfocus.com/bid/101160 https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11060
https://notcve.org/view.php?id=CVE-2017-11060
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed during processing of ACA_NL80211_VENDOR_SUBCMD_EXTSCAN_PNO_SET_PASSPOINT_LIST and QCA_NL80211_VENDOR_SUBCMD_EXTSCAN_PNO_SET_LIST cfg80211 vendor commands in __wlan_hdd_cfg80211_set_passpoint_list and hdd_extscan_passpoint_fill_network_list function respectively. Android ID: A-36817548. References: QC-CR#2058447, QC-CR#2054770. En Android for MSM, Firefox OS for MSM, QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, se observa una sobrelectura de búfer mientras se procesan comandos de fabricante ACA_NL80211_VENDOR_SUBCMD_EXTSCAN_PNO_SET_PASSPOINT_LIST y QCA_NL80211_VENDOR_SUBCMD_EXTSCAN_PNO_SET_LIST cfg80211 en las funciones __wlan_hdd_cfg80211_set_passpoint_list y hdd_extscan_passpoint_fill_network_list respectivamente. Android ID: A-36817548. • http://www.securityfocus.com/bid/101160 https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11050
https://notcve.org/view.php?id=CVE-2017-11050
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when the pktlogconf tool gives a pktlog buffer of size less than the minimal possible source data size in the host driver, a buffer overflow can potentially occur. En Android for MSM, Firefox OS for MSM, QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, cuando la herramienta pktlogconf proporciona un búfer pktlog de un tamaño inferior al tamaño de datos de origen mínimo posible en el controlador del host, puede ocurrir un desbordamiento de búfer. • http://www.securityfocus.com/bid/101160 https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9715
https://notcve.org/view.php?id=CVE-2017-9715
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a vendor command, a buffer over-read can occur. En Android for MSM, Firefox OS for MSM, QRD Android con todas las versiones de Android desde CAF usando el kernel de Linux, al procesar un comando vendor, puede ocurrir una sobrelectura de búfer. • http://www.securityfocus.com/bid/101160 https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11057
https://notcve.org/view.php?id=CVE-2017-11057
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in compatibility mode, flash_data from 64-bit userspace may cause disclosure of kernel memory or a fault due to using a userspace-provided address. En Android for MSM, Firefox OS for MSM, QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, en modo compatibilidad, flash_data de userespace de 64 bits puede provocar que se revele la memoria del kernel o un fallo debido al uso de una dirección proporcionada por el userspace. • http://www.securityfocus.com/bid/101160 https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •