High severity7.8NVD Advisory· Published Dec 20, 2018· Updated Jun 17, 2026
CVE-2017-9704
CVE-2017-9704
Description
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, There is no synchronization between msm_vb2 buffer operations which can lead to use after free.
Affected products
4- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
Vulnerability mechanics
References
1- www.codeaurora.org/security-bulletin/2018/12/03/december-2018-code-aurora-security-bulletinnvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.