CVE-2020-11120: Use After Free
First published: Mon Aug 03 2020(Updated: )
u'Calling thread may free the data buffer pointer that was passed to the callback and later when event loop executes the callback, data buffer may not be valid and will lead to use after free scenario' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8096AU, APQ8098, Bitra, Kamorta, MSM8917, MSM8953, MSM8998, QCM2150, QCS405, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM632, SM6150, SM7150, SM8150, SM8250, SXR2130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm Apq8096au Firmware | ||
| Qualcomm Apq8096au | ||
| Qualcomm Apq8098 Firmware | ||
| Qualcomm Apq8098 | ||
| Qualcomm Bitra Firmware | ||
| Qualcomm Bitra | ||
| Qualcomm Kamorta Firmware | ||
| Qualcomm Kamorta | ||
| Qualcomm Msm8917 Firmware | ||
| Qualcomm Msm8917 | ||
| Qualcomm Msm8953 Firmware | ||
| Qualcomm Msm8953 | ||
| Qualcomm Msm8998 Firmware | ||
| Qualcomm MSM8998 | ||
| Qualcomm Qcm2150 Firmware | ||
| Qualcomm Qcm2150 | ||
| Qualcomm Qcs405 Firmware | ||
| Qualcomm Qcs405 | ||
| Qualcomm Qcs605 Firmware | ||
| Qualcomm Qcs605 | ||
| Qualcomm Qm215 Firmware | ||
| Qualcomm Qm215 | ||
| Qualcomm Rennell Firmware | ||
| Qualcomm Rennell | ||
| Qualcomm Saipan Firmware | ||
| Qualcomm Saipan | ||
| Qualcomm Sdm429 Firmware | ||
| Qualcomm Sdm429 | ||
| Qualcomm Sdm439 Firmware | ||
| Qualcomm Sdm439 | ||
| Qualcomm Sdm450 Firmware | ||
| Qualcomm SDM450 | ||
| Qualcomm Sdm632 Firmware | ||
| Qualcomm Sdm632 | ||
| Qualcomm Sm6150 Firmware | ||
| Qualcomm Sm6150 | ||
| Qualcomm Sm7150 Firmware | ||
| Qualcomm Sm7150 | ||
| Qualcomm Sm8150 Firmware | ||
| Qualcomm Sm8150 | ||
| Qualcomm Sm8250 Firmware | ||
| Qualcomm SM8250 | ||
| Qualcomm Sxr2130 Firmware | ||
| Qualcomm Sxr2130 | ||
| Google Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin
- https://source.codeaurora.org/quic/la/platform/external/wpa_supplicant_8/commit?id=36a414abcf0c864460d8c3bf95a6fd070d9dbbd7
- https://source.android.com/docs/security/bulletin/2020-08-01 (Advisory)
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-11120.
What is the severity rating of CVE-2020-11120?
CVE-2020-11120 has a severity rating of 7.8 (High).
Which software products are affected by CVE-2020-11120?
CVE-2020-11120 affects the following software products: Google Android, Qualcomm Apq8096au Firmware, Qualcomm MSM8917 Firmware, Qualcomm Sdm439 Firmware, Qualcomm Qcs405 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Qm215 Firmware, Qualcomm Rennell Firmware, Qualcomm Saipan Firmware, Qualcomm Sxr2130 Firmware.
What is the description of CVE-2020-11120?
CVE-2020-11120 is a vulnerability where the calling thread may free the data buffer pointer that was passed to the callback, leading to a use after free scenario.
Are Qualcomm Apq8096au and Qualcomm MSM8998 vulnerable to CVE-2020-11120?
No, Qualcomm Apq8096au and Qualcomm MSM8998 are not vulnerable to CVE-2020-11120.
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/severity
- agent/weakness
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/event
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/qualcomm
- canonical/qualcomm apq8096au firmware
- canonical/qualcomm apq8096au
- canonical/qualcomm apq8098 firmware
- canonical/qualcomm apq8098
- canonical/qualcomm bitra firmware
- canonical/qualcomm bitra
- canonical/qualcomm kamorta firmware
- canonical/qualcomm kamorta
- canonical/qualcomm msm8917 firmware
- canonical/qualcomm msm8917
- canonical/qualcomm msm8953 firmware
- canonical/qualcomm msm8953
- canonical/qualcomm msm8998 firmware
- canonical/qualcomm msm8998
- canonical/qualcomm qcm2150 firmware
- canonical/qualcomm qcm2150
- canonical/qualcomm qcs405 firmware
- canonical/qualcomm qcs405
- canonical/qualcomm qcs605 firmware
- canonical/qualcomm qcs605
- canonical/qualcomm qm215 firmware
- canonical/qualcomm qm215
- canonical/qualcomm rennell firmware
- canonical/qualcomm rennell
- canonical/qualcomm saipan firmware
- canonical/qualcomm saipan
- canonical/qualcomm sdm429 firmware
- canonical/qualcomm sdm429
- canonical/qualcomm sdm439 firmware
- canonical/qualcomm sdm439
- canonical/qualcomm sdm450 firmware
- canonical/qualcomm sdm450
- canonical/qualcomm sdm632 firmware
- canonical/qualcomm sdm632
- canonical/qualcomm sm6150 firmware
- canonical/qualcomm sm6150
- canonical/qualcomm sm7150 firmware
- canonical/qualcomm sm7150
- canonical/qualcomm sm8150 firmware
- canonical/qualcomm sm8150
- canonical/qualcomm sm8250 firmware
- canonical/qualcomm sm8250
- canonical/qualcomm sxr2130 firmware
- canonical/qualcomm sxr2130
- vendor/google
- canonical/google android