1
Candidate: CVE-2017-0455
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0455
5
https://source.android.com/security/bulletin/2017-01-01.html
6
https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=2c00928b4884fdb0b1661bcc530d7e68c9561a2f
8
An information disclosure vulnerability in the Qualcomm bootloader could
9
help to enable a local malicious application to to execute arbitrary code
10
within the context of the bootloader. This issue is rated as High because
11
it is a general bypass for a bootloader level defense in depth or exploit
12
mitigation technology. Product: Android. Versions: Kernel-3.18. Android ID:
13
A-32370952. References: QC-CR#1082755.
16
sarnold> I have trouble correlating the description with the patch; is
24
upstream_android: needs-triage
26
precise/esm_android: DNE
27
trusty_android: ignored (abandoned)
28
vivid/stable-phone-overlay_android: ignored (reached end-of-life)
29
vivid/ubuntu-core_android: DNE
30
xenial_android: ignored (abandoned)
31
yakkety_android: ignored (reached end-of-life)
32
zesty_android: ignored (reached end-of-life)