CVE-2019-10598 (apq8053_firmware, apq8096au_firmware, mdm9607_firmware, msm8996au_firmware, qca6574au_firmware, qcn7605_firmware, qcs605_firmware, sda660_firmware, sda845_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdm845_firmware, sdx20_firmware, sdx24_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sxr1130_firmware)

Out of bound access can occur while processing peer info in IBSS connection mode due to lack of upper bounds check to ensure that for loop further will not cause an overflow in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8096AU, MDM9607, MSM8996AU, QCA6574AU, QCN7605, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

View Full Alert

CVE-2019-10536 (apq8009_firmware, apq8017_firmware, apq8053_firmware, apq8096au_firmware, apq8098_firmware, ipq4019_firmware, ipq8064_firmware, ipq8074_firmware, mdm9206_firmware, mdm9207c_firmware, mdm9607_firmware, mdm9640_firmware, mdm9650_firmware, msm8917_firmware, msm8920_firmware, msm8937_firmware, msm8940_firmware, msm8953_firmware, msm8996au_firmware, msm8998_firmware, nicobar_firmware, qca6174a_firmware, qca6574au_firmware, qca8081_firmware, qca9377_firmware, qca9379_firmware, qcn7605_firmware, qcs405_firmware, qcs605_firmware, sda660_firmware, sda845_firmware, sdm450_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdm670_firmware, sdm710_firmware, sdm845_firmware, sdx20_firmware, sdx24_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sm8250_firmware, sxr1130_firmware, sxr2130_firmware)
Potential double free scenario if driver receives another DIAG_EVENT_LOG_SUPPORTED event from firmware as the pointer is not set to NULL on first call in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer…
CVE-2019-10537 (mdm9607_firmware, nicobar_firmware, qca6574au_firmware, qcn7605_firmware, qcs405_firmware, qcs605_firmware, sdm660_firmware, sdm845_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sm8250_firmware, sxr1130_firmware, sxr2130_firmware)
Improper validation of event buffer extracted from FW response can lead to integer overflow, which will allow to pass the length check and eventually will lead to buffer overwrite when…
CVE-2019-10557 (apq8009_firmware, apq8017_firmware, apq8053_firmware, apq8096au_firmware, mdm9206_firmware, mdm9207c_firmware, mdm9607_firmware, mdm9650_firmware, msm8996au_firmware, qca6174a_firmware, qca6574au_firmware, qca9377_firmware, qca9379_firmware, qcn7605_firmware, qcs605_firmware, sda660_firmware, sda845_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdx20_firmware, sdx55_firmware, sxr1130_firmware)
Out-of-bound read in the wireless driver in the Linux kernel due to lack of check of buffer length. in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial…

Related Posts