Description
The CONFIG_STRICT_MEMORY_RWX implementation for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly consider certain memory sections, which makes it easier for attackers to bypass intended access restrictions by leveraging the presence of RWX memory at a fixed location.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.codeaurora.org/projects/security-advisories/configstrictmemoryrwx-not-strictly-enforced-cve-2013-4737
Scores
EPSS
0.0143
EPSS Percentile
69.9%
Details
CWE
CWE-264
Status
published
Products (1)
qualcomm/quic_mobile_station_modem_kernel
3.10
Published
Feb 15, 2014
Tracked Since
Feb 18, 2026