CVE-2016-5340
N/A
N/A
Summary
The is_ashmem_file function in drivers/staging/android/ashmem.c in a certain Qualcomm Innovation Center (QuIC) Android patch for the Linux kernel 3.x mishandles pointer validation within the KGSL Linux Graphics Module, which allows attackers to bypass intended access restrictions by using the /ashmem string as the dentry name.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.codeaurora.org/invalid-path-check-ashmem-memory-file-cve-2016-5340
- http://www.securityfocus.com/bid/92374
- http://source.android.com/security/bulletin/2016-10-01.html
- https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6
- http://www.securitytracker.com/id/1036763
References
- https://www.codeaurora.org/invalid-path-check-ashmem-memory-file-cve-2016-5340
- http://www.securityfocus.com/bid/92374
- http://source.android.com/security/bulletin/2016-10-01.html
- https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6
- http://www.securitytracker.com/id/1036763
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.