High severity7.8NVD Advisory· Published Sep 18, 2018· Updated Jun 17, 2026
CVE-2018-11281
CVE-2018-11281
Description
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while calling IPA_IOC_MDFY_RT_RULE IPA IOCTL, header entry is not checked before use. If IPA_IOC_MDFY_RT_RULE IOCTL called for header entries formerly deleted, a Use after free condition will occur.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
Vulnerability mechanics
References
4- source.android.com/security/bulletin/pixel/2018-09-01nvdPatchVendor Advisory
- source.codeaurora.org/quic/la/kernel/msm-3.10/commit/nvdPatchThird Party Advisory
- source.codeaurora.org/quic/la/kernel/msm-3.18/commit/nvdPatchThird Party Advisory
- www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletinnvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.