CVE-2017-9725 – kernel: Incorrect type conversion for size during dma allocation
https://notcve.org/view.php?id=CVE-2017-9725
In all Qualcomm products with Android releases from CAF using the Linux kernel, during DMA allocation, due to wrong data type of size, allocation size gets truncated which makes allocation succeed when it should fail. En todos los productos Qualcomm con distribuciones Android desde CAF empleando el kernel Linux, durante la asignación de DMA, el tamaño de asignación se trunca, lo que permite que la asignación sea un éxito cuando debería fallar. Esto se debe a un tipo de tamaño de datos erróneo. A flaw was found where the kernel truncated the value used to indicate the size of a buffer which it would later become zero using an untruncated value. This can corrupt memory outside of the original allocation. • http://www.securityfocus.com/bid/100658 https://access.redhat.com/errata/RHSA-2018:0676 https://access.redhat.com/errata/RHSA-2018:1062 https://access.redhat.com/errata/RHSA-2018:1130 https://access.redhat.com/errata/RHSA-2018:1170 https://source.android.com/security/bulletin/2017-09-01 https://access.redhat.com/security/cve/CVE-2017-9725 https://bugzilla.redhat.com/show_bug.cgi?id=1489088 • CWE-681: Incorrect Conversion between Numeric Types CWE-682: Incorrect Calculation •
CVE-2017-0781 – LineageOS 14.1 Blueborne - Remote Code Execution
https://notcve.org/view.php?id=CVE-2017-0781
A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146105. Existe una vulnerabilidad de ejecución remota de código en el sistema Android (bluetooth). • https://www.exploit-db.com/exploits/44415 https://www.exploit-db.com/exploits/44554 https://github.com/ojasookert/CVE-2017-0781 http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html http://www.securityfocus.com/bid/100810 https://source.android.com/security/bulletin/2017-09-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-0782
https://notcve.org/view.php?id=CVE-2017-0782
A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146237. Existe una vulnerabilidad de ejecución remota de código en el sistema Android (bluetooth). • http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html http://www.securityfocus.com/bid/100822 https://source.android.com/security/bulletin/2017-09-01 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2017-0783
https://notcve.org/view.php?id=CVE-2017-0783
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63145701. Existe una vulnerabilidad de divulgación de información en el sistema de Android (bluetooth). • http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html http://www.securityfocus.com/bid/100811 https://source.android.com/security/bulletin/2017-09-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2017-0785 – Android Bluetooth - 'Blueborne' Information Leak
https://notcve.org/view.php?id=CVE-2017-0785
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146698. Existe una vulnerabilidad de divulgación de información en el sistema de Android (bluetooth). • https://www.exploit-db.com/exploits/44555 https://github.com/ojasookert/CVE-2017-0785 https://github.com/Alfa100001/-CVE-2017-0785-BlueBorne-PoC https://github.com/aymankhalfatni/CVE-2017-0785 https://github.com/CyberKimathi/Py3-CVE-2017-0785 https://github.com/RavSS/Bluetooth-Crash-CVE-2017-0785 https://github.com/MasterCode112/Upgraded_BlueBourne-CVE-2017-0785- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html http://www.oracle.com/technetwork/security-advisory • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •