When processing the MSM_THERMAL_GET_CLUSTER_FREQUENCY_PLAN or MSM_THERMAL_GET_CLUSTER_VOLTAGE_PLAN ioctls, a cluster ID greater than the number of possible CPUs results in the use of an out-of-range pointer offset.
Access Vector: Local
Security Risk: Medium
Vulnerability: CWE-823 (Use of Out-of-range Pointer Offset)
All Android releases from CAF using the Linux kernel.
We advise customers to apply the following patches:
Please reference Google's April 2016 Nexus Security Advisory. This issue is ANDROID-26866053.