CVE-2018-20788

N/A

Description

drivers/leds/leds-aw2023.c in the led driver for custom Linux kernels on the Xiaomi Redmi 6pro daisy-o-oss phone has several integer overflows because of a left-shifting operation when the right-hand operand can be equal to or greater than the integer length. This can be exploited by a crafted application for denial of service.

CVE Details

CVSS v3.1 ScoreN/A

Published2/25/2019

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

micode:xiaomi_perseus-p-oss

Weaknesses (CWE)

CWE-190

References

https://github.com/MiCode/Xiaomi_Kernel_OpenSource/issues/973(cve@mitre.org)

https://github.com/MiCode/Xiaomi_Kernel_OpenSource/issues/973(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.