mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
69 lines
2.0 KiB
JSON
69 lines
2.0 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "product-security@qualcomm.com",
|
|
"DATE_PUBLIC" : "2018-03-26T00:00:00",
|
|
"ID" : "CVE-2017-11087",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "Android for MSM, Firefox OS for MSM, QRD Android",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "All Android releases from CAF using the Linux kernel"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "Qualcomm, Inc."
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "libOmxVenc in Android for MSM, Firefox OS for MSM, and QRD Android copies the output buffer to an application with the \"filled length\", which is larger than the output buffer's actual size, leading to an information disclosure problem in the context of mediaserver."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Buffer Over-read in Video"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "https://source.android.com/security/bulletin/pixel/2018-02-01",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://source.android.com/security/bulletin/pixel/2018-02-01"
|
|
},
|
|
{
|
|
"name" : "103669",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/103669"
|
|
}
|
|
]
|
|
}
|
|
}
|