SB20170112100 - Input validation error in Linux kernel
Published: January 12, 2017 Updated: August 9, 2020
Security Bulletin ID
SB20170112100
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Input validation error (CVE-ID: CVE-2016-8395)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
A denial of service vulnerability in the NVIDIA camera driver could enable an attacker to cause a local permanent denial of service, which may require reflashing the operating system to repair the device. This issue is rated as High due to the possibility of local permanent denial of service. Product: Android. Versions: Kernel-3.10. Android ID: A-31403040. References: N-CVE-2016-8395.
Remediation
Install update from vendor's website.