CVE-2015-7890: Buffer Overflow
First published: Wed Feb 12 2020(Updated: )
Multiple buffer overflows in the esa_write function in /dev/seirenin the Exynos Seiren Audio driver, as used in Samsung S6 Edge, allow local users to cause a denial of service (memory corruption) via a large (1) buffer or (2) size parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Galaxy S6 Edge Firmware | ||
| Samsung Galaxy S6 Edge |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this security flaw?
The vulnerability ID of this security flaw is CVE-2015-7890.
What is the severity rating of CVE-2015-7890?
CVE-2015-7890 has a severity rating of 5.5 (medium).
How does CVE-2015-7890 affect Samsung Galaxy S6 Edge?
CVE-2015-7890 affects Samsung Galaxy S6 Edge firmware, potentially causing a denial of service due to memory corruption.
How can this vulnerability be exploited?
This vulnerability can be exploited by local users through the esa_write function in /dev/seiren, by providing a large buffer or size parameter.
Are there any fixes or patches available for CVE-2015-7890?
Unfortunately, specific fixes or patches for CVE-2015-7890 are not mentioned in the provided references.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung galaxy s6 edge firmware
- canonical/samsung galaxy s6 edge