When adding more than ten multiplexer channels through ipa_wwan_ioctl, a buffer overflow occurs.
Access Vector: Local
Security Risk: High
Vulnerability: CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'))
All Android releases from CAF using the Linux kernel.
We advise customers to apply the following patches:
Qualcomm Innovation Center, Inc. (QuIC) thanks Gengjia Chen (@chengjia4574), pjf (weibo.com/jfpan), and Jianqiang Zhao (@jianqiangzhao) of IceSword Lab, Qihoo 360, for reporting the issue and working with QuIC to help improve Android device security.