← Back to CVEs
CVE-2018-11889
N/ADescription
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, when requesting rssi timeout, access invalid memory may occur since local variable 'context' stack data of wlan function is free.
CVE Details
CVSS v3.1 ScoreN/A
Published9/19/2018
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
google:android
Weaknesses (CWE)
CWE-119
References
http://www.securityfocus.com/bid/107770(product-security@qualcomm.com)
https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=4e9edcdbb8d7087dd2c7cc250813426c9c27c4d2(product-security@qualcomm.com)
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin(product-security@qualcomm.com)
http://www.securityfocus.com/bid/107770(af854a3a-2127-422b-91ae-364da2661108)
https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=4e9edcdbb8d7087dd2c7cc250813426c9c27c4d2(af854a3a-2127-422b-91ae-364da2661108)
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.