High severity7.0NVD Advisory· Published Sep 18, 2018· Updated Jun 17, 2026

CVE-2018-11818

Description

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, LUT configuration is passed down to driver from userspace via ioctl. Simultaneous update from userspace while kernel drivers are updating LUT registers can lead to race condition.

Affected products

CAF/Android for MSMllm-create
Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5
Range: All Android releases from CAF using the Linux kernel

Patches

Vulnerability mechanics

References

source.codeaurora.org/quic/la/kernel/msm-3.18/commit/nvdPatchThird Party Advisory
source.codeaurora.org/quic/la/kernel/msm-4.4/commit/nvdPatchThird Party Advisory
www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletinnvdPatchThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000