CVE-2016-10239
N/A
N/A
Summary
In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Qualcomm, Inc. | All Qualcomm Products | All Android releases from CAF using the Linux kernel | affected |
Weaknesses
- Multiple Vulnerabilities in TrustZone
ADP Enrichment
CVE Program Container
Additional References
- https://source.android.com/security/bulletin/2017-04-01
- http://www.securityfocus.com/bid/97334
- http://www.securitytracker.com/id/1038201
References
- https://source.android.com/security/bulletin/2017-04-01
- http://www.securityfocus.com/bid/97334
- http://www.securitytracker.com/id/1038201
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.