CVE-2019-8413

On Xiaomi MIX 2 devices with the 4.4.78 kernel, a NULL pointer dereference in the ioctl interface of the device file /dev/elliptic1 or /dev/elliptic0 causes a system crash via IOCTL 0x4008c575 (aka decimal 1074316661).
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:mi:mi_mix_2_firmware:4.4.78:*:*:*:*:*:*:*
cpe:2.3:h:mi:mi_mix_2:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:49

Type Values Removed Values Added
References () https://github.com/datadancer/HIAFuzz/blob/master/MIX2_elliptic.md - Exploit, Third Party Advisory () https://github.com/datadancer/HIAFuzz/blob/master/MIX2_elliptic.md - Exploit, Third Party Advisory

Information

Published : 2019-02-17 19:29

Updated : 2024-11-21 04:49


NVD link : CVE-2019-8413

Mitre link : CVE-2019-8413

CVE.ORG link : CVE-2019-8413


JSON object : View

Products Affected

mi

  • mi_mix_2
  • mi_mix_2_firmware
CWE
CWE-476

NULL Pointer Dereference