CVE-2017-8268

Summary

In all Qualcomm products with Android releases from CAF using the Linux kernel, the camera application can possibly request frame/command buffer processing with invalid values leading to the driver performing a heap buffer over-read.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.All Qualcomm productsAll Android releases from CAF using the Linux kernelaffected

Weaknesses

  • Buffer Over-read in Camera

ADP Enrichment

CVE Program Container

Additional References

References