RSS   Vulnerabilities for 'Android'   RSS

2017-05-23
 
CVE-2015-1529

 

 
Integer overflow in soundtrigger/ISoundTriggerHwService.cpp in Android allows attacks to cause a denial of service via unspecified vectors.

 
2017-05-16
 
CVE-2016-10242

 

 
A time-of-check time-of-use race condition could potentially exist in the secure file system in all Android releases from CAF using the Linux kernel.

 
 
CVE-2016-10239

 

 
In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur.

 
 
CVE-2016-10238

 

 
In QSEE in all Android releases from CAF using the Linux kernel access control may potentially be bypassed due to a page alignment issue.

 
 
CVE-2016-10237

 

 
If shared content protection memory were passed as the secure camera memory buffer by the HLOS to a trusted application (TA) in all Android releases from CAF using the Linux kernel, the TA would not detect an issue and it would be treated as secure memory.

 
 
CVE-2015-9003

 

 
In TrustZone a cryptographic issue can potentially occur in all Android releases from CAF using the Linux kernel.

 
 
CVE-2015-9002

 

 
In TrustZone an out-of-range pointer offset vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

 
 
CVE-2015-9001

 

 
In TrustZone an information exposure vulnerability can potentially occur in all Android releases from CAF using the Linux kernel.

 
 
CVE-2015-9000

 

 
In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

 
 
CVE-2015-8999

 

 
In TrustZone a buffer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel while loading an ELF file.

 


Copyright 2017, cxsecurity.com