Home / os / wince

Samsung SystemUI fimg2d Null Pointer Dereference

Posted on 30 November -0001

<HTML><HEAD><TITLE>Samsung SystemUI fimg2d Null Pointer Dereference</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>Hi, Description of the potential vulnerability: SVE-2016-6248: SystemUI Security issue Severity: Medium Affected versions: L(5.0/5.1), M(6.0) devices with Exynos7420 chipset Reported on: June 7, 2016 Disclosure status: Privately disclosed. The vulnerability exists due to a null pointer dereference on fimg2d driver. The patch verifies if the object is null before dereferencing it. Fix: http://security.samsungmobile.com/smrupdate.html#SMR-SEP-2016 SVE-2016-6248: SystemUI Security issue I report this to samsung, samsung reply to us if I want to get CVE request it by ourself. Best regards, Zhaozhanpeng(0xr0ot) of Cheetah Mobile. </BODY></HTML>

 

TOP