Description: arch/arm/mm/dma-mapping.c in the Linux kernel before 3.13 on ARM platforms, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not prevent executable DMA mappings, which might allow local users to gain privileges via a crafted application, aka Android internal bug 28803642 and Qualcomm internal bug CR642735. 
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9888
 http://source.android.com/security/bulletin/2016-08-01.html
 https://source.codeaurora.org/quic/la/kernel/msm/commit/?id=f044936caab337a4384fbfe64a4cbae33c7e22a1 
Notes:
Bugs:
upstream: released (3.13-rc1) [0ea1ec713f04bdfac343c9702b21cd3a7c711826]
3.16-upstream-stable: N/A
3.2-upstream-stable: released (3.2.85) [arm-dma-mapping-don-t-allow-dma-mappings-to-be-marked-executable.patch]
sid: released (3.13.4-1)
3.16-jessie-security: N/A
3.2-wheezy-security: released (3.2.84-2) [bugfix/arm/arm-dma-mapping-don-t-allow-dma-mappings-to-be-marked-executable.patch]