CVE-2012-4222
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
30/11/2012
Last modified:
11/04/2025
Description
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center (QuIC) Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service (NULL pointer dereference) via an application that uses crafted arguments in a local kgsl_ioctl call.
Impact
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:google:android:2.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3:rev1:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.5:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.6:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:2.3.7:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:3.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:3.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:3.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:3.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:3.2.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:3.2.4:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.kb.cert.org/vuls/id/702452
- https://www.codeaurora.org/projects/security-advisories/multiple-issues-diagkgsl-system-call-handling-cve-2012-4220-cve-2012
- http://www.kb.cert.org/vuls/id/702452
- https://www.codeaurora.org/projects/security-advisories/multiple-issues-diagkgsl-system-call-handling-cve-2012-4220-cve-2012