VYPR
High severity7.8NVD Advisory· Published Sep 19, 2018· Updated Jun 17, 2026

CVE-2018-11904

CVE-2018-11904

Description

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, asynchronous callbacks received a pointer to a callers local variable. Should the caller return early (e.g., timeout), the callback will dereference an invalid pointer.

Affected products

1
  • Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5
    Range: All Android releases from CAF using the Linux kernel

Patches

Vulnerability mechanics

References

52

News mentions

0

No linked articles in our index yet.