Critical severity9.8NVD Advisory· Published Aug 5, 2016· Updated Jun 17, 2026
CVE-2014-9902
CVE-2014-9902
Description
Buffer overflow in CORE/SYS/legacy/src/utils/src/dot11f.c in the Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices allows remote attackers to execute arbitrary code via a crafted Information Element (IE) in an 802.11 management frame, aka Android internal bug 28668638 and Qualcomm internal bugs CR553937 and CR553941.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords3 versionspkg:deb/ubuntu/linux-flo@3.4.0-5.23?arch=source&distro=esm-apps/xenialpkg:deb/ubuntu/linux-goldfish@3.4.0-4.27?arch=source&distro=esm-apps/xenialpkg:deb/ubuntu/linux-mako@3.4.0-7.44?arch=source&distro=esm-apps/xenial
>= 0+ 2 more
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
Patches
Vulnerability mechanics
References
3- source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/nvdIssue TrackingPatch
- source.android.com/security/bulletin/2016-08-01.htmlnvdVendor Advisory
- www.securityfocus.com/bid/92223nvd
News mentions
0No linked articles in our index yet.