CVE-2020-11833 – In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/charger_ic/oppo_mp26

In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/charger_ic/oppo_mp2650.c, the function mp2650_data_log_write in mp2650_data_log_write does not check the parameter len which causes a vulnerability.

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11833

Reference (s):

• https://security.oppo.com/en/noticedetails.html?noticeId=NOTICE-1333235676610830336
• URL: https://security.oppo.com/en/noticedetails.html?noticeId=NOTICE-1333235676610830336