In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, possible buffer overflow or information leak in the functions "sme_set_ft_ies" and "csr_roam_issue_ft_preauth_req" due to incorrect initialization of WEXT callbacks and lack of the checks for buffer size.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/pixel/2017-11-01 | Patch Vendor Advisory |
https://source.android.com/security/bulletin/pixel/2018-01-01 |
Configurations
History
No history.
Information
Published : 2017-11-16 22:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-11035
Mitre link : CVE-2017-11035
CVE.ORG link : CVE-2017-11035
JSON object : View
Products Affected
- android
CWE
CWE-125
Out-of-bounds Read