The snd_compr_tstamp function in sound/core/compress_offload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize a timestamp data structure, which allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28770164 and Qualcomm internal bug CR568717.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2016-08-06T10:00:00
Updated: 2024-08-06T14:02:36.578Z
Reserved: 2016-06-24T00:00:00
Link: CVE-2014-9892
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-08-06T10:59:35.717
Modified: 2024-11-21T02:21:55.063
Link: CVE-2014-9892
Redhat
No data.