3 results (0.004 seconds)

CVSS: 10.0EPSS: 0%CPEs: 9EXPL: 0

NULL pointer dereference in Samsung Exynos fimg2d driver for Android L(5.0/5.1) and M(6.0) allows attackers to have unspecified impact via unknown vectors. The Samsung ID is SVE-2016-6382. La desreferencia de puntero NULL en el controlador Samsung Exynos fimg2d para Android L (5.0/5.1) y M(6.0) permite a los atacantes tener un impacto no especificado mediante vectores desconocidos. La ID de Samsung es SVE-2016-6382. • http://security.samsungmobile.com/smrupdate.html#SMR-AUG-2016 http://www.openwall.com/lists/oss-security/2016/08/05/3 http://www.openwall.com/lists/oss-security/2016/08/18/10 • CWE-476: NULL Pointer Dereference •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Use-after-free vulnerability in the Samsung Exynos fimg2d driver for Android with Exynos 5433, 54xx, or 7420 chipsets allows attackers to obtain sensitive information via unspecified vectors. The Samsung ID is SVE-2016-6853. Vulnerabilidad de uso después de liberación de memoria en el controlador Samsung Exynos fimg2d para Android con chipsets Exynos 5433, 54xx o 7420 permite a atacantes obtener información sensible a través de vectores no especificados • http://security.samsungmobile.com/smrupdate.html#SMR-NOV-2016 http://www.openwall.com/lists/oss-security/2016/11/09/3 http://www.openwall.com/lists/oss-security/2016/11/11/11 http://www.securityfocus.com/bid/94283 • CWE-416: Use After Free •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

The Samsung Exynos fimg2d driver for Android with Exynos 5433, 54xx, or 7420 chipsets allows local users to cause a denial of service (kernel panic) via a crafted ioctl command. The Samsung ID is SVE-2016-6736. El controlador Samsung Exynos fimg2d para Android con chipsets Exynos 5433, 54xx o 7420 permite a usuarios locales provocar una denegación de servicio (pánico del kernel) a través de un comando ioctl manipulado. • http://security.samsungmobile.com/smrupdate.html#SMR-NOV-2016 http://www.openwall.com/lists/oss-security/2016/11/09/3 http://www.openwall.com/lists/oss-security/2016/11/11/11 http://www.securityfocus.com/bid/94283 • CWE-20: Improper Input Validation •