CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2016-5868
https://notcve.org/view.php?id=CVE-2016-5868
25 Sep 2017 — drivers/net/ethernet/msm/rndis_ipa.c in the Qualcomm networking driver in Android allows remote attackers to execute arbitrary code via a crafted application compromising a privileged process. drivers/net/ethernet/msm/rndis_ipa.c en el controlador de networking de Qualcomm en Android permite que los atacantes remotos ejecuten código arbitrario mediante una aplicación manipulada que compromete un proceso privilegiado. • http://www.securityfocus.com/bid/98197 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8247
https://notcve.org/view.php?id=CVE-2017-8247
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, if there is more than one thread doing the device open operation, the device may be opened more than once. This would lead to get_pid being called more than once, however put_pid being called only once in function "msm_close". En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, si hay más de un subproceso realizando la operación de apertura del dispositivo, éste podría abrirse más de u... • http://www.securityfocus.com/bid/100658 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8250
https://notcve.org/view.php?id=CVE-2017-8250
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, user controlled variables "nr_cmds" and "nr_bos" number are passed across functions without any check. An integer overflow to buffer overflow (with a smaller buffer allocated) may occur when they are too large or negative. Las variables de número controladas por el usuario "nr_cmds" and "nr_bos" se pasan entre funciones sin ningún mecanismo de comprobación en todos los productos Qualcomm con distribuciones Android desde CAF empl... • http://www.securityfocus.com/bid/100658 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8251
https://notcve.org/view.php?id=CVE-2017-8251
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, in functions msm_isp_check_stream_cfg_cmd & msm_isp_stats_update_cgc_override, 'stream_cfg_cmd->num_streams' is not checked, and could overflow the array stream_cfg_cmd->stream_handle. En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, 'stream_cfg_cmd->num_streams' no se comprueba en las funciones msm_isp_check_stream_cfg_cmd y msm_isp_stats_update_cgc_override. Esto podría provocar e... • http://www.securityfocus.com/bid/100658 • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8277
https://notcve.org/view.php?id=CVE-2017-8277
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, in the function msm_dba_register_client, if the client registers failed, it would be freed. However the client was not removed from list. Use-after-free would occur when traversing the list next time. En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, si el registro de clientes fracasa en la función msm_dba_register_client, se liberaría. Sin embargo, el cliente no fue eliminado de la ... • http://www.securityfocus.com/bid/100658 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8278
https://notcve.org/view.php?id=CVE-2017-8278
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, while reading audio data from an unspecified driver, a buffer overflow or integer overflow could occur. En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, podría ocurrir un desbordamiento de búfer o de enteros al leer datos de audio desde un controlador sin especificar. • http://www.securityfocus.com/bid/100658 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-190: Integer Overflow or Wraparound •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8280
https://notcve.org/view.php?id=CVE-2017-8280
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, during the wlan calibration data store and retrieve operation, there are some potential race conditions which lead to a memory leak and a buffer overflow during the context switch. En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, durante la operación de guardado y recuperación de datos de calibración wlan , existen algunas condiciones de carrera potenciales que podrían conducir a un... • http://www.securityfocus.com/bid/100658 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8281
https://notcve.org/view.php?id=CVE-2017-8281
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while querying event status via DCI. Una condición de carrera puede permitir el acceso a la memoria ya liberada al consultar el estado de un evento mediante DCI en todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux podría desembocar en una condición use-after-free. • http://www.securityfocus.com/bid/100658 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10996
https://notcve.org/view.php?id=CVE-2017-10996
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, out of bounds access is possible in c_show(), due to compat_hwcap_str[] not being NULL-terminated. This error is not fatal, however the device might crash/reboot with memory violation/out of bounds access. En todos los productos Qualcomm con sistemas operativos Android distribuidos desde el CAF utilizando el kernel de Linux, es posible que haya un acceso fuera de límites en c_show() ya que compat_hwcap_str() no finaliza en un va... • http://www.securityfocus.com/bid/100658 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10997
https://notcve.org/view.php?id=CVE-2017-10997
21 Sep 2017 — In all Qualcomm products with Android releases from CAF using the Linux kernel, using a debugfs node, a write to a PCIe register can cause corruption of kernel memory. En todos los productos Qualcomm con sistemas operativos Android distribuidos desde el CAF utilizando el kernel de Linux, una escritura en el registro PCIe podría provocar que se corrompa la memoria del kernel utilizando un nodo debugfs. • http://www.securityfocus.com/bid/100658 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •