CVE-2017-15843

HIGH

Google Android - Race Condition

Title source: rule

Description

Due to a race condition in a bus driver, a double free in msm_bus_floor_vote_context() can potentially occur in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

References (2)

[Patch, Third Party Advisory] https://www.codeaurora.org/security-bulletin/2018/05/11/may-2018-code-aurora-security-bulletin-2

[Third Party Advisory] https://source.android.com/security/bulletin/pixel/2018-05-01

Scores

CVSS v3 7.0

EPSS 0.0003

EPSS Percentile 9.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-415 CWE-362

Status published

Affected Products (1)

google/android

Timeline

Published Jun 12, 2018

Tracked Since Feb 18, 2026