CVE-2018-11278

Sažetak

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Venus HW searches for start code when decoding input bit stream buffers. If start code is not found in entire buffer, there is over-fetch beyond allocation length. This leads to page fault.

Reference

https://source.codeaurora.org/quic/la/platform/hardware/qcom/media/commit/?id=6c7dbdb2f067bf844beef2c41d9d67cacc3adfa6
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin

CVSS

Base:	6.6
Impact:	9.2
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	NONE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:N/A:C

Zadnje važnije ažuriranje

09-11-2018 - 18:22

Objavljeno

18-09-2018 - 18:29