CVE-2016-2064

HIGH

Linux Kernel 3.0-3.19.8 - Out-of-bounds Read in MSM QDSP6 Audio Driver

Title source: llm
STIX 2.1

Description

sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted application that makes an ioctl call specifying many commands.

References (3)

Core 3

Scores

CVSS v3 7.8
EPSS 0.0058
EPSS Percentile 43.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-125
Status published
Products (1)
linux/linux_kernel 3.0 - 3.19.8
Published Aug 07, 2016
Tracked Since Feb 18, 2026