漏洞标题
N/A
漏洞描述信息
在MSM相机驱动程序的Linux内核3.x中,在Qualcomm Innovation Center(QuIC)为MSM设备和其他产品提供的Android贡献中,存在多个基于栈的缓冲溢出,这可能导致攻击者获得权限。通过(1)创建的VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl调用,与 drivers/media/platform/msm/camera_v2/pproc/vpe/msm_vpe.c相关,或(2)创建的VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO ioctl调用,与 drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c相关。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Multiple stack-based buffer overflows in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to gain privileges via (1) a crafted VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/vpe/msm_vpe.c, or (2) a crafted VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
MSM摄像头驱动基于栈的缓冲区溢出漏洞
漏洞描述信息
MSM camera driver for the Linux kernel是一个基于Linux内核中的高通平台摄像头驱动项目。 Qualcomm Innovation Center (QuIC) Android contributions for MSM设备和其他产品中使用的MSM摄像头驱动中存在基于栈的缓冲区溢出漏洞。当处理参数传递到VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO或VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl
CVSS信息
N/A
漏洞类别
授权问题