CVE-2017-18144: Use After Free

First published: Mon Apr 02 2018(Updated: )

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 835, SD 845, while processing the retransmission of WPA supplicant command send failures, there is a make after break of the connection to WPA supplicant where the local pointer is not properly updated. If the WPA supplicant command transmission fails, a Use After Free condition will occur.

Credit: product-security@qualcomm.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/references
• agent/type
• agent/first-publish-date
• agent/severity
• agent/author
• agent/weakness
• agent/description
• collector/mitre-cve
• source/MITRE
• agent/event
• agent/last-modified-date
• agent/source
• collector/android-source
• source/Android
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• agent/softwarecombine
• agent/tags
• collector/nvd-index
• vendor/google
• canonical/android
• vendor/qualcomm
• canonical/qualcomm msm8909w
• canonical/qualcomm sd210 firmware
• canonical/qualcomm sd 212 firmware
• canonical/qualcomm sd 212
• canonical/qualcomm 205 firmware
• canonical/qualcomm 205
• canonical/qualcomm sd 450 firmware
• canonical/qualcomm sdm450
• canonical/qualcomm sd 615 firmware
• canonical/qualcomm sd 615
• canonical/qualcomm snapdragon 616 firmware
• canonical/qualcomm sd 415 firmware
• canonical/qualcomm sd 415
• canonical/qualcomm sd 625 firmware
• canonical/qualcomm sd 625
• canonical/qualcomm sd 650 firmware
• canonical/qualcomm sd 650
• canonical/qualcomm sd 652 firmware
• canonical/qualcomm sd 652
• canonical/qualcomm sd 820 firmware
• canonical/qualcomm sd 820
• canonical/qualcomm sd835 firmware
• canonical/qualcomm snapdragon 835
• canonical/qualcomm sd845 firmware