Описание
drivers/leds/leds-aw2023.c in the led driver for custom Linux kernels on the Xiaomi Redmi 6pro daisy-o-oss phone has several integer overflows because of a left-shifting operation when the right-hand operand can be equal to or greater than the integer length. This can be exploited by a crafted application for denial of service.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2018-11-26 (включая)
cpe:2.3:o:micode:xiaomi_perseus-p-oss:*:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00165
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
drivers/leds/leds-aw2023.c in the led driver for custom Linux kernels on the Xiaomi Redmi 6pro daisy-o-oss phone has several integer overflows because of a left-shifting operation when the right-hand operand can be equal to or greater than the integer length. This can be exploited by a crafted application for denial of service.
EPSS
Процентиль: 38%
0.00165
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-190