CVE-2018-11275
Summary
| CVE | CVE-2018-11275 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-09-18 18:29:00 UTC |
| Updated | 2019-03-05 13:29:00 UTC |
| Description | In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, when flashing image using FastbootLib if size is not divisible by block size, information leak occurs. |
Risk And Classification
Problem Types: CWE-200
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Google Android Multiple Qualcomm Components Multiple Security Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| September 2018 Code Aurora Security Bulletin - Code Aurora | CONFIRM | www.codeaurora.org | Patch, Third Party Advisory |
| abl/tianocore/edk2 - Unnamed repository | CONFIRM | source.codeaurora.org | Patch, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.