In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, and SD 800, while reading PlayReady rights string information from command buffer (which is sent from non-secure side), if length of rights string is very large, a buffer over read occurs, exposing TZ App memory to non-secure side.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: qualcomm
Published: 2018-04-18T14:00:00Z
Updated: 2024-09-17T03:32:27.413Z
Reserved: 2017-08-16T00:00:00
Link: CVE-2014-10043
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-04-18T14:29:00.277
Modified: 2024-11-21T02:03:23.627
Link: CVE-2014-10043
Redhat
No data.