Latest qualcomm msm8996 firmware Vulnerabilities

CVE-2020-11123
u'information disclosure in gatekeeper trustzone implementation as the throttling mechanism to prevent brute force attempts at getting user`s lock-screen password can be bypassed by performing the sta...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
and 225 more
CVE-2020-3621
u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snap...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Google Android
and 121 more
CVE-2019-13994
u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential in...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 125 more
CVE-2019-14074
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 135 more
CVE-2020-3622
u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon A...
Qualcomm Apq8009
Qualcomm Apq8017
Google Android
Google Android
Qualcomm Apq8098
Google Android
and 190 more
CVE-2019-10527
u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapd...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 133 more
CVE-2019-13995
u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, ...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 125 more
CVE-2020-3643
u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Ind...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 111 more
CVE-2019-13998
u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, ...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 125 more
CVE-2020-3644
u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdra...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Qualcomm Apq8098
and 79 more
CVE-2019-13999
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 123 more
CVE-2019-10615
u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 109 more
CVE-2019-14101
Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Co...
Google Android
Qualcomm Apq8009
Qualcomm Apq8096 Firmware
Google Android
Google Android
Google Android
and 108 more
CVE-2019-14093
Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IO...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 56 more
CVE-2019-14037
Close and bind operations done on a socket can lead to a Use-After-Free condition. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdr...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Google Android
and 56 more
CVE-2020-3688
Possible buffer overflow while parsing mp4 clip with corrupted sample atoms due to improper validation of index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 91 more
CVE-2019-14094
Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Google Android
and 122 more
CVE-2019-10597
kernel writes to user passed address without any checks can lead to arbitrary memory write in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, ...
Google Android
Qualcomm Ipq6018
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Qualcomm Msm8996 Firmware
Google Android
and 35 more
CVE-2020-3661
Buffer overflow will happen while parsing mp4 clip with corrupted sample atoms values which exceeds MAX_UINT32 range due to lack of validation checks in Snapdragon Auto, Snapdragon Compute, Snapdragon...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
and 83 more
CVE-2020-3663
Buffer over-write may occur during fetching track decoder specific information if cb size exceeds buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, ...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
and 83 more
CVE-2020-3660
Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 69 more
CVE-2020-3665
A possible buffer overflow would occur while processing command from firmware due to the group_id obtained from the firmware being out of range in Snapdragon Auto, Snapdragon Compute, Snapdragon Conne...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
and 37 more
CVE-2020-3658
Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 83 more
CVE-2020-3662
Buffer overflow can occur while parsing eac3 header while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Ind...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 61 more
CVE-2019-14067
Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 103 more
CVE-2020-3630
Possibility of out of bound access while processing the responses from video firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IO...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Google Android
and 91 more
CVE-2019-10574
Lack of boundary checks for data offsets received from HLOS can lead to out-of-bound read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,...
Google Android
Qualcomm Apq8009
Qualcomm Apq8016 Firmware
Google Android
Google Android
Qualcomm Apq8017
and 96 more
CVE-2019-14007
Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute,...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 93 more
CVE-2019-10483
Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp or strcmp in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electroni...
Google Android
Qualcomm Apq8009
Qualcomm Apq8016 Firmware
Google Android
Google Android
Qualcomm Apq8017
and 99 more
CVE-2019-14110
Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Comp...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 99 more
CVE-2019-14000
Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compu...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 111 more
CVE-2019-14015
Google Android
Qualcomm Apq8096 Firmware
Google Android
Google Android
Google Android
Google Android
and 51 more
CVE-2019-2300
Possible buffer overflow in WLAN handler due to lack of validation of destination buffer size before copying into it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
and 59 more
CVE-2019-14095
Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago...
Google Android
Google Android
Qualcomm Apq8009
Qualcomm Apq8016 Firmware
Google Android
Google Android
and 125 more
CVE-2019-14061
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
and 85 more
CVE-2019-10591
Null pointer dereference can happen when parsing udta atom which is non-standard and having invalid depth in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
and 81 more
CVE-2019-2311
Possible buffer overflow in WLAN handler due to lack of validation of destination buffer size before copying it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Ele...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Qualcomm Apq8096 Firmware
and 77 more
CVE-2019-14057
Buffer Over read of codec private data while parsing an mkv file due to lack of check of buffer size before read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IO...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 91 more
CVE-2019-10590
Out of bound access while parsing dts atom, which is non-standard as it does not have valid number of tracks in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, S...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 89 more
CVE-2019-10561
Improper initialization of local variables which are parameters to sfs api may cause invalid pointer dereference and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Conne...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 50 more
CVE-2019-10532
Null-pointer dereference issue can occur while calculating string length when source string length is zero in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial I...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 77 more
CVE-2019-14017
Heap buffer overflow can occur while parsing invalid MKV clip which is not standard and have invalid vorbis codec data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 87 more
CVE-2019-10578
Null pointer dereference can occur while parsing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 85 more
CVE-2019-14013
While parsing invalid super index table, elements within super index table may exceed total chunk size and invalid data is read into the table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 89 more
CVE-2019-10579
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 89 more
CVE-2019-14016
Integer overflow occurs while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 77 more
CVE-2019-14005
Buffer overflow occur while playing the clip which is nonstandard due to lack of check of size duration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdr...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 81 more
CVE-2019-14006
Buffer overflow occur while playing the clip which is nonstandard due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 83 more
CVE-2019-14003
Null pointer exception can happen while parsing invalid MKV clip where cue information is parsed before segment information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 87 more
CVE-2019-10611
Buffer overflow can occur while processing clip due to lack of check of object size before parsing in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon ...
Google Android
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
and 75 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203