Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / ef13746660602b56e2f41df35c13af7519ced6a3
commitef13746660602b56e2f41df35c13af7519ced6a3[log] [tgz]
authorTeow Wan Yee <wy.teow@hi-p.com>Tue Nov 22 10:50:40 2016 +0800
committerTeemu Hukkanen <teemu@fairphone.com>Fri Dec 16 18:55:02 2016 +0100
tree0493a0e1eba29633a5c45ea9ce19523947ceddf0
parent00e31f4a45977bdecdda2565cdebd253ee4cd18f [diff]
FPII-2610: Information disclosure vulnerability in Qualcomm components CVE-2016-6757 A-30148242

An information disclosure vulnerability in Qualcomm components including the camera driver and
video driver could enable a local malicious application to access data outside of its permission levels.
This issue is rated as Moderate because it first requires compromising a privileged process.

Additional technical details:

A-30148242 (Qualcomm ref#: CR#1052821)
The format specifier %p can leak kernel addresses.

The fix is designed to use %pK instead of %p, which also evaluates whether kptr_restrict is set.

Change-Id: I0ffcd27468fdb9126c17b8df39ae0b9fc0dcbdb8
13 files changed
tree: 0493a0e1eba29633a5c45ea9ce19523947ceddf0
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. AndroidKernel.mk
  25. COPYING
  26. CREDITS
  27. Kbuild
  28. Kconfig
  29. MAINTAINERS
  30. Makefile
  31. README
  32. REPORTING-BUGS