{"id":"UBUNTU-CVE-2018-9519","details":"In easelcomm_hw_build_scatterlist, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System privileges required. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-69808833.","modified":"2025-07-16T07:39:08.217169Z","published":"2018-12-07T23:29:00Z","withdrawn":"2025-07-18T16:44:34Z","upstream":["CVE-2018-9519"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-9519"},{"type":"REPORT","url":"https://source.android.com/security/bulletin/pixel/2018-09-01"},{"type":"REPORT","url":"https://github.com/android-linux-stable/wahoo/commit/4c39f5fbf3be421b4ac9b389c05b22042d51548a"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2018-9519"}],"affected":[{"package":{"name":"linux-azure","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/linux-azure@4.15.0-1023.24~14.04.1?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1023.24~14.04.1"}]}],"ecosystem_specific":{"binaries":[{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-azure-cloud-tools-4.15.0-1023"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-azure-cloud-tools-4.15.0-1023-dbgsym"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-azure-headers-4.15.0-1023"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-azure-tools-4.15.0-1023"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-azure-tools-4.15.0-1023-dbgsym"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-cloud-tools-4.15.0-1023-azure"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-headers-4.15.0-1023-azure"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-image-unsigned-4.15.0-1023-azure"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-image-unsigned-4.15.0-1023-azure-dbgsym"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-modules-4.15.0-1023-azure"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-modules-extra-4.15.0-1023-azure"},{"binary_version":"4.15.0-1023.24~14.04.1","binary_name":"linux-tools-4.15.0-1023-azure"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-9519.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}