CVE-2016-2061

HIGH

Linux kernel 3.x - Privilege Escalation

Title source: llm

Description

Integer signedness error in the MSM V4L2 video driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges or cause a denial of service (array overflow and memory corruption) via a crafted application that triggers an msm_isp_axi_create_stream call.

Exploits (1)

github WORKING POC 682 stars

by ScottyBauer · cpoc

https://github.com/ScottyBauer/Android_Kernel_CVE_POCs/tree/master/CVE-2016-2061.c

View Code ZIP pw:eip

References (3)

[Vendor Advisory] http://source.android.com/security/bulletin/2016-06-01.html

[Mailing List, Third Party Advisory] https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.18/commit/id=79db14ca9f791a14be9376a0340ad3b9b9a4d603

[Broken Link] https://www.codeaurora.org/array-overflow-msm-v4l2-video-driver-allows-kernel-memory-corruption-cve-2016-2061

Scores

CVSS v3 7.8

EPSS 0.0021

EPSS Percentile 42.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (1)

linux/linux_kernel 3.0 - 3.19.8

Published Jun 13, 2016

Tracked Since Feb 18, 2026