CVE-2014-9978

Summary

In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a QTEE service.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.All Qualcomm productsAll Android releases from CAF using the Linux kernelaffected

Weaknesses

  • Buffer Copy without Checking Size of Input in TrustZone

ADP Enrichment

CVE Program Container

Additional References

References