mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
69 lines
2.0 KiB
JSON
69 lines
2.0 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "product-security@qualcomm.com",
|
|
"DATE_PUBLIC" : "2017-12-04T00:00:00",
|
|
"ID" : "CVE-2017-14908",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "Android for MSM, Firefox OS for MSM, QRD Android",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "All Android releases from CAF using the Linux kernel"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "Qualcomm, Inc."
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the SafeSwitch test application does not properly validate the number of blocks to verify."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Improper Input Validation in SafeSwitch"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "https://source.android.com/security/bulletin/2017-12-01",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://source.android.com/security/bulletin/2017-12-01"
|
|
},
|
|
{
|
|
"name" : "102072",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/102072"
|
|
}
|
|
]
|
|
}
|
|
}
|