Payload size is not validated before reading memory that may cause issue of accessing invalid pointer or some garbage data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Rennell, Saipan, SC8180X, SDA660, SDA845, SDM429W, SDM439, SDM670, SDM710, SDX20, SDX24, SDX55, SM8150, SM8250, SXR1130, SXR2130
View Full Alert
Related Posts
CVE-2019-10597 (ipq6018_firmware, ipq8074_firmware, msm8996_firmware, msm8996au_firmware, nicobar_firmware, qcs605_firmware, rennell_firmware, saipan_firmware, sc7180_firmware, sc8180x_firmware, sdm670_firmware, sdm710_firmware, sdm845_firmware, sdm850_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sm8250_firmware, sxr1130_firmware, sxr2130_firmware)kernel writes to user passed address without any checks can lead to arbitrary memory write in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure…
CVE-2019-10605 (apq8009_firmware, apq8053_firmware, ipq8074_firmware, mdm9607_firmware, mdm9650_firmware, msm8909_firmware, msm8939_firmware, qcn7605_firmware, sda660_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdx20_firmware, sdx24_firmware)Buffer overwrite can occur in IEEE80211 header filling function due to lack of range check of array index received from firmware in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer…
CVE-2019-10598 (apq8053_firmware, apq8096au_firmware, mdm9607_firmware, msm8996au_firmware, qca6574au_firmware, qcn7605_firmware, qcs605_firmware, sda660_firmware, sda845_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdm845_firmware, sdx20_firmware, sdx24_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sxr1130_firmware)Out of bound access can occur while processing peer info in IBSS connection mode due to lack of upper bounds check to ensure that for loop further will not cause…