Vulnerability Description
An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_MSM_IPC sockets, which could let a local malicious user obtain sensitive information (Android Bug ID A-32551280).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | < 7.0 | |
| Pixel | - | |
| Pixel Xl | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97371Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038201Third Party AdvisoryVDB Entry
- https://github.com/ele7enxxh/poc-exp/tree/master/CVE-2016-5346ExploitThird Party Advisory
- https://source.android.com/security/bulletin/2017-04-01.htmlThird Party Advisory
- https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6298a474322fb2PatchThird Party Advisory
- http://www.securityfocus.com/bid/97371Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038201Third Party AdvisoryVDB Entry
- https://github.com/ele7enxxh/poc-exp/tree/master/CVE-2016-5346ExploitThird Party Advisory
- https://source.android.com/security/bulletin/2017-04-01.htmlThird Party Advisory
- https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6298a474322fb2PatchThird Party Advisory
FAQ
What is CVE-2016-5346?
CVE-2016-5346 is a vulnerability with a CVSS score of 5.5 (MEDIUM). An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_MS...
How severe is CVE-2016-5346?
CVE-2016-5346 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-5346?
Check the references section above for vendor advisories and patch information. Affected products include: Google Android, Google Pixel, Google Pixel Xl.