CVE-2016-5861

Summary

In a display driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable controlled by userspace is used to calculate offsets and sizes for copy operations, which could result in heap overflow.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.All Qualcomm productsAndroid for MSM, Firefox OS for MSM, QRD Androidaffected

Weaknesses

  • Buffer Copy without Checking Size of Input in Display

ADP Enrichment

CVE Program Container

Additional References

References