CVE-2018-5852: Buffer Over-read in IPA

First published: Tue Nov 26 2024(Updated: )

An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat'

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
All of
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
All of
Qualcomm Mdm9607 Firmware
Qualcomm Mdm9607
All of
Qualcomm Mdm9640 Firmware
Qualcomm Mdm9640
All of
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
All of
Qualcomm Msm8909w Firmware
Qualcomm Msm8909w
All of
Qualcomm Sd 210 Firmware
Qualcomm Sd 210
All of
Qualcomm Sd 212 Firmware
Qualcomm Sd 212
All of
Qualcomm Sd 205 Firmware
Qualcomm Sd 205
All of
Qualcomm Sd 425 Firmware
Qualcomm Sd 425
All of
Qualcomm Sd 430 Firmware
Qualcomm Sd 430
All of
Qualcomm Sd 450 Firmware
Qualcomm Sd 450
All of
Qualcomm Sd 615 Firmware
Qualcomm Sd 615
All of
Qualcomm Sd 616 Firmware
Qualcomm Sd 616
All of
Qualcomm Sd 415 Firmware
Qualcomm Sd 415
All of
Qualcomm Sd 617 Firmware
Qualcomm Sd 617
All of
Qualcomm Sd 625 Firmware
Qualcomm Sd 625
All of
Qualcomm Sd 650 Firmware
Qualcomm Sd 650
All of
Qualcomm Sd 652 Firmware
Qualcomm Sd 652
All of
Qualcomm Sd 810 Firmware
Qualcomm Sd 810
All of
Qualcomm Sd 820 Firmware
Qualcomm Sd 820
All of
Qualcomm Sd 820a Firmware
Qualcomm Sd 820a
All of
Qualcomm Sd 835 Firmware
Qualcomm Sd 835
All of
Qualcomm Sd 845 Firmware
Qualcomm Sd 845

Never miss a vulnerability like this again

Reference Links

https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2018-bulletin.html

CVE-2018-5852: Buffer Over-read in IPA

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact