Integer overflow in diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service via an application that uses crafted arguments in a local diagchar_ioctl call.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Android | 2.3 (including) | 2.3 (including) | |
| Android | 2.3-rev1 (including) | 2.3-rev1 (including) | |
| Android | 2.3.1 (including) | 2.3.1 (including) | |
| Android | 2.3.2 (including) | 2.3.2 (including) | |
| Android | 2.3.3 (including) | 2.3.3 (including) | |
| Android | 2.3.4 (including) | 2.3.4 (including) | |
| Android | 2.3.5 (including) | 2.3.5 (including) | |
| Android | 2.3.6 (including) | 2.3.6 (including) | |
| Android | 2.3.7 (including) | 2.3.7 (including) | |
| Android | 3.0 (including) | 3.0 (including) | |
| Android | 3.1 (including) | 3.1 (including) | |
| Android | 3.2 (including) | 3.2 (including) | |
| Android | 3.2.1 (including) | 3.2.1 (including) | |
| Android | 3.2.2 (including) | 3.2.2 (including) | |
| Android | 3.2.4 (including) | 3.2.4 (including) | |
| Android | 3.2.6 (including) | 3.2.6 (including) | |
| Android | 4.0 (including) | 4.0 (including) | |
| Android | 4.0.1 (including) | 4.0.1 (including) | |
| Android | 4.0.2 (including) | 4.0.2 (including) | |
| Android | 4.0.3 (including) | 4.0.3 (including) | |
| Android | 4.0.4 (including) | 4.0.4 (including) | |
| Android | 4.1 (including) | 4.1 (including) | |
| Android | 4.2 (including) | 4.2 (including) |