CVE-2017-8272

Summary

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a driver function, a value from userspace is not properly validated potentially leading to an out of bounds heap write.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.All Qualcomm productsAll Android releases from CAF using the Linux kernelaffected

Weaknesses

  • Improper Validation of Array Index in Display

ADP Enrichment

CVE Program Container

Additional References

References