Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
View Full Alert
Related Posts
CVE-2018-11980 (apq8009_firmware, apq8017_firmware, apq8053_firmware, apq8064_firmware, apq8096au_firmware, mdm9206_firmware, mdm9207c_firmware, mdm9607_firmware, mdm9640_firmware, mdm9650_firmware, msm8937_firmware, msm8996au_firmware, msm8998_firmware, qca6174a_firmware, qca6574au_firmware, qca9377_firmware, qca9379_firmware, qcn7605_firmware, qcs605_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdx20_firmware, sdx24_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sxr1130_firmware)When a fake broadcast/multicast 11w rmf without mmie received, since no proper length check in wma_process_bip, buffer overflow will happen in both cds_is_mmie_valid and qdf_nbuf_trim_tail in Snapdragon Auto, Snapdragon Consumer…
CVE-2018-13916 (apq8009_firmware, apq8017_firmware, apq8053_firmware, apq8096_firmware, apq8096au_firmware, apq8098_firmware, ipq8074_firmware, mdm9150_firmware, mdm9206_firmware, mdm9607_firmware, mdm9635m_firmware, mdm9640_firmware, mdm9650_firmware, mdm9655_firmware, msm8905_firmware, msm8909_firmware, msm8909w_firmware, msm8917_firmware, msm8920_firmware, msm8937_firmware, msm8940_firmware, msm8953_firmware, msm8976_firmware, msm8996_firmware, msm8996au_firmware, msm8998_firmware, nicobar_firmware, qca8081_firmware, qcm2150_firmware, qcn7605_firmware, qcs404_firmware, qcs405_firmware, qcs605_firmware, qm215_firmware, sc8180x_firmware, sda660_firmware, sda845_firmware, sdm429_firmware, sdm439_firmware, sdm450_firmware, sdm630_firmware, sdm632_firmware, sdm636_firmware, sdm660_firmware, sdm670_firmware, sdm710_firmware, sdm845_firmware, sdm850_firmware, sdx20_firmware, sdx55_firmware, sm8150_firmware, sm8250_firmware, snapdragon_high_med_2016_firmware, sxr1130_firmware, sxr2130_firmware)Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics…
CVE-2019-10481 (apq8096au_firmware, ipq4019_firmware, ipq8064_firmware, ipq8074_firmware, mdm9607_firmware, msm8996au_firmware, qca6574au_firmware, qca8081_firmware, qcn7605_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware)Out of bound access occurs while handling the WMI FW event due to lack of check of buffer argument which comes directly from the WLAN FW in Snapdragon Auto, Snapdragon…
