Stack Overflow Vulnerability in CAF Android Releases: TrustZone Memory Corruption

Stack Overflow Vulnerability in CAF Android Releases: TrustZone Memory Corruption

CVE-2018-12010 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Absence of length sanity check may lead to possible stack overflow resulting in memory corruption in trustzone region.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.