CVE-2016-6916
Severity CVSS v4.0:
Pending analysis
Type:
CWE-190
Integer Overflow or Wraparound
Publication date:
24/04/2017
Last modified:
20/04/2025
Description
Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denial of service (system crash) via unspecified vectors, which triggers a buffer overflow.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:nvidia:shield_tablet_firmware:*:*:*:*:*:*:*:* | 4.3.0 (including) | |
| cpe:2.3:h:nvidia:shield_tablet:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:nvidia:shield_tablet_tk1_firmware:*:*:*:*:*:*:*:* | 1.4.0 (including) | |
| cpe:2.3:h:nvidia:shield_tablet_tk1:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:nvidia:shield_tv_firmware:*:*:*:*:*:*:*:* | 3.2 (including) | |
| cpe:2.3:h:nvidia:shield_tv:-:*:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:video_driver:-:*:*:*:*:android:*:* | ||
| cpe:2.3:h:google:nexus_9:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:google:pixel_c:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://nvidia.custhelp.com/app/answers/detail/a_id/4561
- http://www.securityfocus.com/bid/94667
- https://nvidia.custhelp.com/app/answers/detail/a_id/4276/~/security-bulletin%3A-nvidia-shield-contains-multiple-vulnerabilities-in
- https://source.android.com/security/bulletin/2016-12-01
- http://nvidia.custhelp.com/app/answers/detail/a_id/4561
- http://www.securityfocus.com/bid/94667
- https://nvidia.custhelp.com/app/answers/detail/a_id/4276/~/security-bulletin%3A-nvidia-shield-contains-multiple-vulnerabilities-in
- https://source.android.com/security/bulletin/2016-12-01