CVE-2016-2068 : The MSM QDSP6 audio driver (aka sound driver) for the Linux kernel 3.x, as used

The MSM QDSP6 audio driver (aka sound driver) for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges or cause a denial of service (integer overflow, and buffer overflow or buffer over-read) via a crafted application that performs a (1) AUDIO_EFFECTS_WRITE or (2) AUDIO_EFFECTS_READ operation, aka Qualcomm internal bug CR1006609.

Published 2016-07-11 01:59:33

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Products affected by CVE-2016-2068

Linux » Linux Kernel
Versions from including (>=) 3.0 and up to, including, (<=) 3.19.8
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Google » Android
Versions up to, including, (<=) 6.0.1
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2016-2068

Top countries where our scanners detected CVE-2016-2068

Top open port discovered on systems with this issue 49152

IPs affected by CVE-2016-2068 25,689

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2016-2068!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2016-2068

EPSS FAQ

0.16%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 34 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-2068

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2016-2068

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-2068

https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.18/commit/?id=2c04c0dab66013b7dfbe4d5a523c2c1d6b5b11d6

kernel/msm-3.18 - Unnamed repository; edit this file 'description' to name the repository.
Mailing List;Patch;Third Party Advisory
https://www.codeaurora.org/multiple-vulnerabilities-msm-qdsp6-audio-driver-allow-kernel-memory-corruption-cve-2016-2068-0

Page not found - Code Aurora
Broken Link
https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=9900650540c889f761d102202bc80306ae80ab83

kernel/msm-3.10 - Unnamed repository
Mailing List;Patch;Third Party Advisory
https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=01ee86da5a0cd788f134e360e2be517ef52b6b00

kernel/msm-3.10 - Unnamed repository
Mailing List;Patch;Third Party Advisory
http://source.android.com/security/bulletin/2016-07-01.html

Android Security Bulletin—July 2016 | Android Open Source Project
Patch;Vendor Advisory

CVEs referencing this url