Multiple use-after-free vulnerabilities in Qualcomm sound driver on Android devices

Multiple use-after-free vulnerabilities in Qualcomm sound driver on Android devices

CVE-2015-8951 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Multiple use-after-free vulnerabilities in sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm sound driver in Android before 2016-10-05 on Nexus 5X, Nexus 6P, and Android One devices allow attackers to gain privileges via a crafted application, aka Android internal bug 30142668 and Qualcomm internal bug CR 948902.

Learn more about our Cis Benchmark Audit For Google Android.