CVE-2018-3564
Description
In the FastRPC driver in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, a Use After Free condition can occur when mapping on the remote processor fails.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A use-after-free in Qualcomm's FastRPC driver when mapping on the remote processor fails, exploitable for local privilege escalation.
Vulnerability
The vulnerability resides in the FastRPC driver for Qualcomm components in Android for MSM, Firefox OS for MSM, and QRD Android. It is a Use After Free condition that occurs when a mapping operation on the remote processor fails. The affected kernel versions are those included in Android security patch levels prior to 2018-06-05. [1]
Exploitation
An attacker requires local access to the device with the ability to trigger the FastRPC driver code path that causes a mapping failure. By repeatedly initiating mapping requests that are designed to fail, the attacker can cause the driver to free a memory region while it is still referenced, leading to a Use After Free condition. No user interaction beyond normal system usage is required for the triggering sequence. [1]
Impact
Successful exploitation can result in a local elevation of privilege (EoP), potentially allowing an attacker to execute arbitrary code in the kernel context. The scope of compromise is limited to the affected Android device, but the attacker could gain full control over the system's kernel operations. [1]
Mitigation
The vulnerability is addressed in the Android security patch level 2018-06-05, which was included in the Pixel/Nexus Security Bulletin published on June 1, 2018. Users should apply the June 2018 security update or later. No workarounds are available for unpatched devices. [1]
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: before security patch level 2018-06-05
- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- source.android.com/security/bulletin/pixel/2018-06-01mitrex_refsource_CONFIRM
- source.codeaurora.org/quic/la/kernel/msm-4.4/commit/mitrex_refsource_CONFIRM
- www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletinmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.