CVE-2013-4736

Published: Feb 10, 2014Modified: Apr 29, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Multiple integer overflows in the JPEG engine drivers in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (system crash) via a large number of commands in an ioctl call, related to (1) camera_v1/gemini/msm_gemini_sync.c, (2) camera_v2/gemini/msm_gemini_sync.c, (3) camera_v2/jpeg_10/msm_jpeg_sync.c, (4) gemini/msm_gemini_sync.c, (5) jpeg_10/msm_jpeg_sync.c, and (6) mercury/msm_mercury_sync.c.

Affected (38)

Products: Codeaurora: Android Msm

Codeaurora

1 product

Android Msm

Configuration A

38 vulnerable

Vulnerable Software	Affected Versions
Codeaurora Android Msm	Version 3.10.22
Codeaurora Android Msm	Version 3.10.23
Codeaurora Android Msm	Version 3.10.24
Codeaurora Android Msm	Version 3.10.25
Codeaurora Android Msm	Version 3.10.26
Codeaurora Android Msm	Version 3.10.27
Codeaurora Android Msm	Version 3.10.28
Codeaurora Android Msm	Version 3.10.29
Codeaurora Android Msm	Version 3.12.10
Codeaurora Android Msm	Version 3.12.3
Codeaurora Android Msm	Version 3.12.4
Codeaurora Android Msm	Version 3.12.5
Codeaurora Android Msm	Version 3.12.6
Codeaurora Android Msm	Version 3.12.7
Codeaurora Android Msm	Version 3.12.8
Codeaurora Android Msm	Version 3.12.9
Codeaurora Android Msm	Version 3.13.1
Codeaurora Android Msm	Version 3.13.2
Codeaurora Android Msm	Version 3.13
Codeaurora Android Msm	Version 3.13 rc1
Codeaurora Android Msm	Version 3.13 rc2
Codeaurora Android Msm	Version 3.13 rc3
Codeaurora Android Msm	Version 3.13 rc4
Codeaurora Android Msm	Version 3.13 rc5
Codeaurora Android Msm	Version 3.13 rc6
Codeaurora Android Msm	Version 3.13 rc7
Codeaurora Android Msm	Version 3.13 rc8
Codeaurora Android Msm	Version 3.14 rc1
Codeaurora Android Msm	Version 3.14 rc2
Codeaurora Android Msm	Version 3.2.54
Codeaurora Android Msm	Version 3.4.72
Codeaurora Android Msm	Version 3.4.73
Codeaurora Android Msm	Version 3.4.74
Codeaurora Android Msm	Version 3.4.75
Codeaurora Android Msm	Version 3.4.76
Codeaurora Android Msm	Version 3.4.77
Codeaurora Android Msm	Version 3.4.78
Codeaurora Android Msm	Version 3.4.79

Related CWEs

CWE-189

References (2)

https://www.codeaurora.org/projects/security-advisories/integer-overflow-and-signedness-issue-camera-jpeg-engines-cve-2013-4736

Source: cve@mitre.org

PatchVendor Advisory

https://www.codeaurora.org/projects/security-advisories/integer-overflow-and-signedness-issue-camera-jpeg-engines-cve-2013-4736

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.