CVE-2019-2238
First published: Mon Jul 01 2019(Updated: )
Lack of check of data type can lead to subsequent loop-expression potentially go negative and the condition will still evaluate to true leading to buffer underflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 8CX, SXR1130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Qualcomm Mdm9206 Firmware | ||
| Qualcomm Mdm9206 | ||
| Google Android | ||
| Qualcomm Mdm9607 | ||
| Qualcomm Mdm9650 Firmware | ||
| Qualcomm Mdm9650 | ||
| Qualcomm Mdm9655 Firmware | ||
| Qualcomm Mdm9655 | ||
| Qualcomm Qcs605 Firmware | ||
| Google Android | ||
| Qualcomm Sd 210 Firmware | ||
| Qualcomm Sd 210 | ||
| Qualcomm Sd 212 Firmware | ||
| Qualcomm Sd 212 | ||
| Qualcomm Sd 205 Firmware | ||
| Qualcomm Sd 205 | ||
| Qualcomm Sd 410 Firmware | ||
| Google Android | ||
| Qualcomm Sd 412 Firmware | ||
| Qualcomm Sd 412 | ||
| Google Android | ||
| Qualcomm Sd 675 | ||
| Qualcomm Sd 712 Firmware | ||
| Qualcomm Sd 712 | ||
| Qualcomm Sd 710 Firmware | ||
| Qualcomm Sd 710 | ||
| Qualcomm Sd 670 Firmware | ||
| Qualcomm Sd 670 | ||
| Qualcomm Sd 730 Firmware | ||
| Qualcomm Sd 730 | ||
| Google Android | ||
| Qualcomm Sd 8cx | ||
| Qualcomm Sxr1130 Firmware | ||
| Qualcomm Sxr1130 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-2238?
The severity of CVE-2019-2238 is high with a score of 7.8.
What is the impact of CVE-2019-2238?
CVE-2019-2238 can lead to buffer underflow, potentially causing security issues and system instability.
Which software products are affected by CVE-2019-2238?
CVE-2019-2238 affects Google Android, Qualcomm Mdm9206 Firmware, Qualcomm Mdm9650 Firmware, Qualcomm Mdm9655 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Sd 210 Firmware, Qualcomm Sd 212 Firmware, Qualcomm Sd 205 Firmware, Qualcomm Sd 410 Firmware, Qualcomm Sd 412 Firmware, Qualcomm Sd 675 Firmware, Qualcomm Sd 712 Firmware, Qualcomm Sd 710 Firmware, Qualcomm Sd 670 Firmware, Qualcomm Sd 730 Firmware, and Qualcomm Sxr1130 Firmware.
How can I fix CVE-2019-2238?
To fix CVE-2019-2238, it is recommended to apply the necessary patches or updates provided by the relevant software vendors or follow the guidelines provided in their bulletins or security advisories.
Where can I find more information about CVE-2019-2238?
You can find more information about CVE-2019-2238 on the official Android Security Bulletin website and the Qualcomm Product Security Bulletins.
- collector/android-source
- collector/nvd-index
- vendor/google
- canonical/google android
- vendor/qualcomm
- canonical/qualcomm mdm9206 firmware
- canonical/qualcomm mdm9206
- canonical/qualcomm mdm9607
- canonical/qualcomm mdm9650 firmware
- canonical/qualcomm mdm9650
- canonical/qualcomm mdm9655 firmware
- canonical/qualcomm mdm9655
- canonical/qualcomm qcs605 firmware
- canonical/qualcomm sd 210 firmware
- canonical/qualcomm sd 210
- canonical/qualcomm sd 212 firmware
- canonical/qualcomm sd 212
- canonical/qualcomm sd 205 firmware
- canonical/qualcomm sd 205
- canonical/qualcomm sd 410 firmware
- canonical/qualcomm sd 412 firmware
- canonical/qualcomm sd 412
- canonical/qualcomm sd 675
- canonical/qualcomm sd 712 firmware
- canonical/qualcomm sd 712
- canonical/qualcomm sd 710 firmware
- canonical/qualcomm sd 710
- canonical/qualcomm sd 670 firmware
- canonical/qualcomm sd 670
- canonical/qualcomm sd 730 firmware
- canonical/qualcomm sd 730
- canonical/qualcomm sd 8cx
- canonical/qualcomm sxr1130 firmware
- canonical/qualcomm sxr1130