Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Fri, 5 Aug 2016 20:23:57 +0800
From: Idler <idler1984@...il.com>
To: oss-security@...ts.openwall.com
Cc: anarcheuz@...il.com, cve-assign@...re.org
Subject: CVE Request - Samsung Exynos fimg2d NULL Pointer Dereference

Hello,

I'd like to request CVE for the following vulnerability fixed in
Samsung Exynos fimg2d driver for Android:

Security bulletin: http://security.samsungmobile.com/smrupdate.html#SMR-AUG-2016

SVE-2016-6382: fimg2d NULL Pointer Dereference

Severity: Medium
Affected versions: L(5.0/5.1), M(6.0) devices with Exynos7420 chipset
Reported on: June 7, 2016
Disclosure status: Privately disclosed.
The vulnerability exists due to a null pointer dereference on fimg2d driver.
The patch verifies if the object is null before dereferencing it.

Best Regards,
James Fang

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ