Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27718 of 28144

CVE-2014-9933

Posted by Cyberthreat Blog | May 16, 2017 | CVE Notifications |

Due to missing input validation in all Android releases from CAF using the Linux kernel, HLOS can write to fuses for which it should not have access.

CVE-2014-9934

Posted by Cyberthreat Blog | May 16, 2017 | CVE Notifications |

A PKCS#1 v1.5 signature verification routine in all Android releases from CAF using the Linux kernel may not check padding.

CVE-2014-9935

Posted by Cyberthreat Blog | May 16, 2017 | CVE Notifications |

In TrustZone an integer overflow vulnerability leading to a buffer overflow could potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

CVE-2014-9936

Posted by Cyberthreat Blog | May 16, 2017 | CVE Notifications |

In TrustZone a time-of-check time-of-use race condition could potentially exist in an authentication routine in all Android releases from CAF using the Linux kernel.

CVE-2014-9932

Posted by Cyberthreat Blog | May 16, 2017 | CVE Notifications |

In TrustZone, an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel due to an improper address range computation.

Author: Cyberthreat Blog

CVE-2014-9933

CVE-2014-9934

CVE-2014-9935

CVE-2014-9936

CVE-2014-9932