CVE-2018-11870: Buffer Overflow
First published: Mon Oct 29 2018(Updated: )
Buffer overwrite can occur when the legacy rates count received from the host is not checked against the maximum number of legacy rates in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8996AU, QCA4531, QCA6174A, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9378, QCA9379, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDX20.
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Qualcomm Mdm9206 Firmware | ||
| Qualcomm Mdm9206 | ||
| Qualcomm Mdm9607 Firmware | ||
| Qualcomm Mdm9607 | ||
| Google Android | ||
| Qualcomm Mdm9635m | ||
| Qualcomm Mdm9640 Firmware | ||
| Qualcomm Mdm9640 | ||
| Qualcomm Mdm9650 Firmware | ||
| Qualcomm Mdm9650 | ||
| Qualcomm Msm8996au Firmware | ||
| Qualcomm Msm8996au | ||
| Qualcomm Qca4531 Firmware | ||
| Qualcomm Qca4531 | ||
| Qualcomm Qca6174a Firmware | ||
| Qualcomm Qca6174a | ||
| Qualcomm Qca6574au Firmware | ||
| Qualcomm Qca6574au | ||
| Qualcomm Qca6584 Firmware | ||
| Qualcomm Qca6584 | ||
| Qualcomm Qca6584au Firmware | ||
| Qualcomm Qca6584au | ||
| Qualcomm Qca9377 Firmware | ||
| Qualcomm Qca9377 | ||
| Qualcomm Qca9378 Firmware | ||
| Qualcomm Qca9378 | ||
| Qualcomm Qca9379 Firmware | ||
| Qualcomm Qca9379 | ||
| Qualcomm Sd 210 Firmware | ||
| Qualcomm Sd 210 | ||
| Qualcomm Sd 212 Firmware | ||
| Qualcomm Sd 212 | ||
| Qualcomm Sd 205 Firmware | ||
| Qualcomm Sd 205 | ||
| Qualcomm Sd 425 Firmware | ||
| Qualcomm Sd 425 | ||
| Qualcomm Sd 600 Firmware | ||
| Qualcomm Sd 600 | ||
| Qualcomm Sd 625 Firmware | ||
| Qualcomm Sd 625 | ||
| Qualcomm Sd 650 Firmware | ||
| Qualcomm Sd 650 | ||
| Qualcomm Sd 652 Firmware | ||
| Qualcomm Sd 652 | ||
| Google Android | ||
| Qualcomm Sd 810 | ||
| Qualcomm Sd 820 Firmware | ||
| Qualcomm Sd 820 | ||
| Qualcomm Sd 820a Firmware | ||
| Qualcomm Sd 820a | ||
| Qualcomm Sd 835 Firmware | ||
| Qualcomm Sd 835 | ||
| Qualcomm Sd 845 Firmware | ||
| Qualcomm Sd 845 | ||
| Qualcomm Sd 850 Firmware | ||
| Qualcomm Sd 850 | ||
| Qualcomm Sda660 Firmware | ||
| Qualcomm Sda660 | ||
| Qualcomm Sdx20 Firmware | ||
| Qualcomm Sdx20 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-11870?
CVE-2018-11870 is a vulnerability that allows buffer overwrite when the legacy rates count received from the host is not checked against the maximum number of legacy rates.
Which software is affected by CVE-2018-11870?
Qualcomm Mdm9206 Firmware, Qualcomm Mdm9640 Firmware, Qualcomm Mdm9650 Firmware, and Google Android are affected by CVE-2018-11870.
What is the severity of CVE-2018-11870?
CVE-2018-11870 has a severity rating of 7.8, which is considered high.
How can I fix CVE-2018-11870?
To fix CVE-2018-11870, update to the latest firmware or software version provided by Qualcomm or Google, depending on the affected product.
Where can I find more information about CVE-2018-11870?
You can find more information about CVE-2018-11870 in the following references: [SecurityFocus](http://www.securityfocus.com/bid/107681), [Qualcomm Product Security Bulletins](https://www.qualcomm.com/company/product-security/bulletins), and [Android Security Bulletin](https://source.android.com/docs/security/bulletin/2019-04-01/#asterisk).
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/android-source
- agent/software-canonical-lookup-request
- agent/author
- agent/severity
- agent/weakness
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/nvd-index
- vendor/google
- canonical/google android
- vendor/qualcomm
- canonical/qualcomm mdm9206 firmware
- canonical/qualcomm mdm9206
- canonical/qualcomm mdm9607 firmware
- canonical/qualcomm mdm9607
- canonical/qualcomm mdm9635m
- canonical/qualcomm mdm9640 firmware
- canonical/qualcomm mdm9640
- canonical/qualcomm mdm9650 firmware
- canonical/qualcomm mdm9650
- canonical/qualcomm msm8996au firmware
- canonical/qualcomm msm8996au
- canonical/qualcomm qca4531 firmware
- canonical/qualcomm qca4531
- canonical/qualcomm qca6174a firmware
- canonical/qualcomm qca6174a
- canonical/qualcomm qca6574au firmware
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6584 firmware
- canonical/qualcomm qca6584
- canonical/qualcomm qca6584au firmware
- canonical/qualcomm qca6584au
- canonical/qualcomm qca9377 firmware
- canonical/qualcomm qca9377
- canonical/qualcomm qca9378 firmware
- canonical/qualcomm qca9378
- canonical/qualcomm qca9379 firmware
- canonical/qualcomm qca9379
- canonical/qualcomm sd 210 firmware
- canonical/qualcomm sd 210
- canonical/qualcomm sd 212 firmware
- canonical/qualcomm sd 212
- canonical/qualcomm sd 205 firmware
- canonical/qualcomm sd 205
- canonical/qualcomm sd 425 firmware
- canonical/qualcomm sd 425
- canonical/qualcomm sd 600 firmware
- canonical/qualcomm sd 600
- canonical/qualcomm sd 625 firmware
- canonical/qualcomm sd 625
- canonical/qualcomm sd 650 firmware
- canonical/qualcomm sd 650
- canonical/qualcomm sd 652 firmware
- canonical/qualcomm sd 652
- canonical/qualcomm sd 810
- canonical/qualcomm sd 820 firmware
- canonical/qualcomm sd 820
- canonical/qualcomm sd 820a firmware
- canonical/qualcomm sd 820a
- canonical/qualcomm sd 835 firmware
- canonical/qualcomm sd 835
- canonical/qualcomm sd 845 firmware
- canonical/qualcomm sd 845
- canonical/qualcomm sd 850 firmware
- canonical/qualcomm sd 850
- canonical/qualcomm sda660 firmware
- canonical/qualcomm sda660
- canonical/qualcomm sdx20 firmware
- canonical/qualcomm sdx20