VYPR
Medium severity5.5NVD Advisory· Published Mar 30, 2018· Updated Jun 17, 2026

CVE-2017-9693

CVE-2017-9693

Description

The length of attribute value for STA_EXT_CAPABILITY in __wlan_hdd_change_station in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-06 being less than the actual lenth of StaParams.extn_capability results in a read for extra bytes when a memcpy is done from params->ext_capab to StaParams.extn_capability using the sizeof(StaParams.extn_capability).

Affected products

2
  • Range: < 2017-06-06
  • Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5
    Range: All Android releases from CAF using the Linux kernel

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.