CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-15813
https://notcve.org/view.php?id=CVE-2017-15813
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overflow can occur while reading firmware logs. En Android for MSM, Firefox OS for MSM y QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, puede ocurrir un desbordamiento de búfer cuando se leen registros del firmware. • https://source.android.com/security/bulletin/pixel/2017-12-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9709
https://notcve.org/view.php?id=CVE-2017-9709
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a privilege escalation vulnerability exists in telephony. En Android for MSM, Firefox OS for MSM y QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, existe una vulnerabilidad de escalado de privilegios en telephony. • https://source.android.com/security/bulletin/pixel/2017-12-01 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7827
https://notcve.org/view.php?id=CVE-2017-7827
Memory safety bugs were reported in Firefox 56. ... This vulnerability affects Firefox < 57. Se han informado de errores de seguridad de memoria en Firefox 56. ... Esta vulnerabilidad afecta a las versiones anteriores a la 57 de Firefox. • http://www.securityfocus.com/bid/101832 http://www.securitytracker.com/id/1039803 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1399922%2C1403646%2C1403716%2C1365894%2C1402876%2C1406154%2C1384121%2C1384615%2C1407375%2C1339485%2C1361432%2C1394031%2C1383019%2C1407032%2C1387845%2C1386490 https://www.mozilla.org/security/advisories/mfsa2017-24 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11015
https://notcve.org/view.php?id=CVE-2017-11015
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, currently, the value of SIR_MAC_AUTH_CHALLENGE_LENGTH is set to 128 which may result in buffer overflow since the frame parser allows challenge text of length up to 253 bytes, but the driver can not handle challenge text larger than 128 bytes. En Android for MSM, Firefox OS for MSM, QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, el valor actual de SIR_MAC_AUTH_CHALLENGE_LENGTH está definido en 128, lo que podría provocar un desbordamiento de búfer ya que el analizador de tramas permite que el texto challenge ocupe hasta 253 bytes, pero el controlador no puede manipular textos challenge mayores de 128 bytes. • http://www.securityfocus.com/bid/101774 https://source.android.com/security/bulletin/2017-11-01 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-11092
https://notcve.org/view.php?id=CVE-2017-11092
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the KGSL driver function kgsl_ioctl_gpu_command, a Use After Free condition can potentially occur. En Android para MSM, Firefox OS para MSM, QRD Android, con todas las distribuciones de Android de CAF que utilizan el kernel de Linux, en la función kgsl_ioctl_gpu_command del controlador KGSL, puede ocurrir una condición de uso de memoria previamente liberada (User After Free). • http://www.securityfocus.com/bid/101774 https://source.android.com/security/bulletin/2017-11-01 • CWE-416: Use After Free •