← Back to CVE List

CVE-2017-14883

Published: 2018-03-30T21:29Z
Last Modified: 2024-11-21T03:13Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
In the function wma_unified_power_debug_stats_event_handler() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-18, if the value param_buf->num_debug_register received from the FW command buffer is close to max of uint32, then the computation performed using this variable to calculate stats_registers_len may overflow to a smaller value leading to less than required memory allocated for power_stats_results and potentially a buffer overflow while copying the FW buffer to local buffer. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt