Stack-based buffer overflow in the m2m1shot_compat_ioctl32 function in the Samsung m2m1shot driver framework, as used in Samsung S6 Edge, allows local users to have unspecified impact via a large data.buf_out.num_planes value in an ioctl call.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/134108/Samsung-M2m1shot-Kernel-Driver-Buffer-Overflow.html | Exploit Third Party Advisory VDB Entry |
https://code.google.com/p/google-security-research/issues/detail?id=493 | Exploit Third Party Advisory |
https://www.exploit-db.com/exploits/38555/ | Exploit Third Party Advisory VDB Entry |
Configurations
History
No history.
Information
Published : 2019-12-09 20:15
Updated : 2024-02-28 17:28
NVD link : CVE-2015-7892
Mitre link : CVE-2015-7892
CVE.ORG link : CVE-2015-7892
JSON object : View
Products Affected
samsung
- m2m1shot_driver
CWE
CWE-787
Out-of-bounds Write