CVE-2015-9034

Summary

In all Qualcomm products with Android releases from CAF using the Linux kernel, a string can fail to be null-terminated in SIP leading to a buffer overflow.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.All Qualcomm productsAll Android releases from CAF using the Linux kernelaffected

Weaknesses

  • Buffer Copy without Checking Size of Input in IMS

ADP Enrichment

CVE Program Container

Additional References

References