CVE-2016-9279

7.5HIGH

Key Information:

Vendor: Samsung
Status: Exynos Fimg2d Driver
Vendor: CVE Published:; 18 January 2017

Summary

Use-after-free vulnerability in the Samsung Exynos fimg2d driver for Android with Exynos 5433, 54xx, or 7420 chipsets allows attackers to obtain sensitive information via unspecified vectors. The Samsung ID is SVE-2016-6853.

References

http://www.openwall.com/lists/oss-security/2016/11/11/11

mailing-listx_refsource_MLIST

http://www.openwall.com/lists/oss-security/2016/11/09/3

mailing-listx_refsource_MLIST

http://www.securityfocus.com/bid/94283

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 18, 2017
Vulnerability Reserved
Nov 11, 2016