CVE-2014-9904 in Androidinformation

Résumé

par MITRE • 25/01/2023

The snd_compress_check_input function in sound/core/compress_offload.c in the ALSA subsystem in the Linux kernel before 3.17 does not properly check for an integer overflow, which allows local users to cause a denial of service (insufficient memory allocation) or possibly have unspecified other impact via a crafted SNDRV_COMPRESS_SET_PARAMS ioctl call.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

24/06/2016

Divulgation

27/06/2016

Modérer

accepté

Entrée

2

Relier

afficher

CPE

prêt

EPSS

0.00384

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!