mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-07 21:46:40 +02:00
0xMarcio
883 B
883 B
CVE-2018-5891
Description
While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in Snapdragon Mobile and Snapdragon Wear.