In all Qualcomm products with Android releases from CAF using the Linux kernel, during DMA allocation, due to wrong data type of size, allocation size gets truncated which makes allocation succeed when it should fail.
The product performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management.
Link | Tags |
---|---|
https://source.android.com/security/bulletin/2017-09-01 | patch vendor advisory |
https://access.redhat.com/errata/RHSA-2018:1062 | vendor advisory |
https://access.redhat.com/errata/RHSA-2018:0676 | vendor advisory |
https://access.redhat.com/errata/RHSA-2018:1170 | vendor advisory |
https://access.redhat.com/errata/RHSA-2018:1130 | vendor advisory |
http://www.securityfocus.com/bid/100658 | vdb entry third party advisory |