Google Android vulnerabilities

CVE-2024-45558 [HIGH] CVE-2024-45558: WLAN Android Security Bulletin 2025-01-01 CVE: CVE-2024-45558 Severity: HIGH Component: WLAN References: A-372002616 QC-CR#3852338

CVE-2024-43704 [HIGH] CVE-2024-43704: PowerVR-GPU Android Security Bulletin 2025-01-01 CVE: CVE-2024-43704 Severity: HIGH Component: PowerVR-GPU References: A-363073314 *

CVE-2024-45553 [HIGH] CVE-2024-45553: Kernel Android Security Bulletin 2025-01-01 CVE: CVE-2024-45553 Severity: HIGH Component: Kernel References: A-372003017 QC-CR#3845043 [2]

CVE-2024-47040 [CRITICAL] CWE-416 CVE-2024-47040: There is a possible UAF due to a logic error in the code. This could lead to local escalation of pri There is a possible UAF due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-47039 [CRITICAL] CWE-125 CVE-2024-47039: In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a missin In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-47038 [CRITICAL] CWE-787 CVE-2024-47038: In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due to a In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due to a missing bounds check. This could lead to localcescalation of privilege with no additional execution privileges needed. Usercinteraction is not needed for exploitation.

CVE-2018-9416 [CRITICAL] CWE-787 CVE-2018-9416: In sg_remove_scat of scsi/sg.c, there is a possible memory corruption due to an unusual root cau In sg_remove_scat of scsi/sg.c, there is a possible memory corruption due to an unusual root cause. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9388 [CRITICAL] CWE-191 CVE-2018-9388: In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound w In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound writes due to missing bounds checks or integer underflows. These could lead to escalation of privilege.

CVE-2018-9402 [HIGH] CWE-787 CVE-2018-9402: In multiple functions of gl_proc.c, there is a buffer overwrite due to a missing bounds check. This In multiple functions of gl_proc.c, there is a buffer overwrite due to a missing bounds check. This could lead to escalation of privileges in the kernel.

CVE-2018-9397 [MEDIUM] CWE-787 CVE-2018-9397: In WMT_unlocked_ioctl of MTK WMT device driver, there is a possible OOB write due to a missing b In WMT_unlocked_ioctl of MTK WMT device driver, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9403 [MEDIUM] CWE-787 CVE-2018-9403: In the MTK_FLP_MSG_HAL_DIAG_REPORT_DATA_NTF handler of flp2hal_- interface.c, there is a possibl In the MTK_FLP_MSG_HAL_DIAG_REPORT_DATA_NTF handler of flp2hal_- interface.c, there is a possible stack buffer overflow due to a missing bounds check. This could lead to local escalation of privilege in a privileged process with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9391 [MEDIUM] CWE-787 CVE-2018-9391: In update_gps_sv and output_vzw_debug of vendor/mediatek/proprietary/hardware/connectivity/gps/g In update_gps_sv and output_vzw_debug of vendor/mediatek/proprietary/hardware/connectivity/gps/gps_hal/src/gpshal_wor ker.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9439 [MEDIUM] CWE-416 CVE-2018-9439: In __unregister_prot_hook and packet_release of af_packet.c, there is a possible use-after-free In __unregister_prot_hook and packet_release of af_packet.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9400 [MEDIUM] CWE-787 CVE-2018-9400: In gt1x_debug_write_proc and gt1x_tool_write of drivers/input/touchscreen/mediatek/GT1151/gt1x_g In gt1x_debug_write_proc and gt1x_tool_write of drivers/input/touchscreen/mediatek/GT1151/gt1x_generic.c and gt1x_tools.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9408 [MEDIUM] CWE-125 CVE-2018-9408: In m3326_gps_write and m3326_gps_read of gps.s, there is a possible Out Of Bounds Read due to a In m3326_gps_write and m3326_gps_read of gps.s, there is a possible Out Of Bounds Read due to a missing bounds check. This could lead to a local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2017-13308 [MEDIUM] CWE-120 CVE-2017-13308: In tscpu_write_GPIO_out and mtkts_Abts_write of mtk_ts_Abts.c, there is a possible buffer overflow i In tscpu_write_GPIO_out and mtkts_Abts_write of mtk_ts_Abts.c, there is a possible buffer overflow in an sscanf due to improper input validation. This could lead to a local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9407 [MEDIUM] CWE-125 CVE-2018-9407: In emmc_rpmb_ioctl of emmc_rpmb.c, there is an Information Disclosure due to a Missing Bounds Check. In emmc_rpmb_ioctl of emmc_rpmb.c, there is an Information Disclosure due to a Missing Bounds Check. This could lead to Information Disclosure of kernel data.

CVE-2018-9404 [MEDIUM] CWE-190 CVE-2018-9404: In oemCallback of ril.cpp, there is a possible out of bounds write due to an integer overflow. T In oemCallback of ril.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9390 [MEDIUM] CWE-125 CVE-2018-9390: In procfile_write of gl_proc.c, there is a possible out of bounds read of a function pointer du In procfile_write of gl_proc.c, there is a possible out of bounds read of a function pointer due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2018-9462 [MEDIUM] CWE-787 CVE-2018-9462: In store_cmd of ftm4_pdc.c, there is a possible out of bounds write due to an incorrect bounds c In store_cmd of ftm4_pdc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.