CVE-2016-2062

Опубликовано: 05 мая 2016

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

The adreno_perfcounter_query_group function in drivers/gpu/msm/adreno_perfcounter.c in the Adreno GPU driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, uses an incorrect integer data type, which allows attackers to cause a denial of service (integer overflow, heap-based buffer overflow, and incorrect memory allocation) or possibly have unspecified other impact via a crafted IOCTL_KGSL_PERFCOUNTER_QUERY ioctl call.

Ссылки

http://source.android.com/security/bulletin/2016-06-01.html
Patch
Vendor Advisory
http://www.securitytracker.com/id/1035766
Third Party Advisory
VDB Entry
https://codeaurora.org/cgit/quic/la/kernel/msm-3.18/commit/?id=27c95b64b2e4b5ff1288cbaa6e353dd803d71576
Mailing List
Patch
Third Party Advisory
https://www.codeaurora.org/buffer-overflow-adreno-gpu-msm-driver-cve-2016-2062
Broken Link
http://source.android.com/security/bulletin/2016-06-01.html
Patch
Vendor Advisory
http://www.securitytracker.com/id/1035766
Third Party Advisory
VDB Entry
https://codeaurora.org/cgit/quic/la/kernel/msm-3.18/commit/?id=27c95b64b2e4b5ff1288cbaa6e353dd803d71576
Mailing List
Patch
Third Party Advisory
https://www.codeaurora.org/buffer-overflow-adreno-gpu-msm-driver-cve-2016-2062
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 3.0 (включая) до 3.19.8 (включая)

Конфигурация 2

Одновременно

cpe:2.3:o:google:nexus_5x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:google:nexus_5x:-:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

cpe:2.3:o:google:nexus_6p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:google:nexus_6p:-:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00058

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-190

Связанные уязвимости

GHSA-x9c4-x5m6-x5h9