CVE-2020-11120: Use After Free
First published: Mon Aug 03 2020(Updated: )
u'Calling thread may free the data buffer pointer that was passed to the callback and later when event loop executes the callback, data buffer may not be valid and will lead to use after free scenario' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8096AU, APQ8098, Bitra, Kamorta, MSM8917, MSM8953, MSM8998, QCM2150, QCS405, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM632, SM6150, SM7150, SM8150, SM8250, SXR2130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | ||
| Qualcomm APQ8096AU Firmware | ||
| Qualcomm APQ8096AU Firmware | ||
| qualcomm APQ8098 | ||
| Qualcomm 8098 | ||
| Qualcomm Bitra | ||
| Qualcomm Bitra Firmware | ||
| Qualcomm Kamorta | ||
| qualcomm Kamorta firmware | ||
| Qualcomm MSM8917 | ||
| Qualcomm MSM8917 Firmware | ||
| Qualcomm 8953 Firmware | ||
| Qualcomm MSM8953 Firmware | ||
| Qualcomm MSM8998 | ||
| Qualcomm 8998 | ||
| Qualcomm QCM2150 | ||
| Qualcomm QCM2150 Firmware | ||
| Qualcomm QCS405 Firmware | ||
| Qualcomm QCS405 Firmware | ||
| Qualcomm ZZ QCS605 firmware | ||
| Qualcomm QCS605 Firmware | ||
| Qualcomm 215 Firmware | ||
| Qualcomm 215 | ||
| Qualcomm Rennell | ||
| qualcomm Rennell firmware | ||
| Qualcomm Saipan Firmware | ||
| Qualcomm Saipan Firmware | ||
| Qualcomm SDM429W | ||
| Qualcomm SD429 | ||
| qualcomm SDM439 firmware | ||
| Qualcomm SDM439 Firmware | ||
| Qualcomm SD 450 Firmware | ||
| Qualcomm Snapdragon 450 | ||
| Qualcomm SDM632 | ||
| Qualcomm SDM632 | ||
| qualcomm SM6150P firmware | ||
| Qualcomm SM6150P | ||
| qualcomm SM7150 firmware | ||
| qualcomm SM7150 firmware | ||
| Qualcomm SM8150P Firmware | ||
| Qualcomm SM8150 Fusion | ||
| Qualcomm SM8250 | ||
| Qualcomm qsm8250 | ||
| qualcomm SXR2130P firmware | ||
| Qualcomm SXR2130 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin
- https://source.codeaurora.org/quic/la/platform/external/wpa_supplicant_8/commit?id=36a414abcf0c864460d8c3bf95a6fd070d9dbbd7
- https://source.android.com/docs/security/bulletin/2020-08-01 (Advisory)
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-11120.
What is the severity rating of CVE-2020-11120?
CVE-2020-11120 has a severity rating of 7.8 (High).
Which software products are affected by CVE-2020-11120?
CVE-2020-11120 affects the following software products: Google Android, Qualcomm Apq8096au Firmware, Qualcomm MSM8917 Firmware, Qualcomm Sdm439 Firmware, Qualcomm Qcs405 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Qm215 Firmware, Qualcomm Rennell Firmware, Qualcomm Saipan Firmware, Qualcomm Sxr2130 Firmware.
What is the description of CVE-2020-11120?
CVE-2020-11120 is a vulnerability where the calling thread may free the data buffer pointer that was passed to the callback, leading to a use after free scenario.
Are Qualcomm Apq8096au and Qualcomm MSM8998 vulnerable to CVE-2020-11120?
No, Qualcomm Apq8096au and Qualcomm MSM8998 are not vulnerable to CVE-2020-11120.
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/severity
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/google
- canonical/android
- vendor/qualcomm
- canonical/qualcomm apq8096au firmware
- canonical/qualcomm apq8098
- canonical/qualcomm 8098
- canonical/qualcomm bitra
- canonical/qualcomm bitra firmware
- canonical/qualcomm kamorta
- canonical/qualcomm kamorta firmware
- canonical/qualcomm msm8917
- canonical/qualcomm msm8917 firmware
- canonical/qualcomm 8953 firmware
- canonical/qualcomm msm8953 firmware
- canonical/qualcomm msm8998
- canonical/qualcomm 8998
- canonical/qualcomm qcm2150
- canonical/qualcomm qcm2150 firmware
- canonical/qualcomm qcs405 firmware
- canonical/qualcomm zz qcs605 firmware
- canonical/qualcomm qcs605 firmware
- canonical/qualcomm 215 firmware
- canonical/qualcomm 215
- canonical/qualcomm rennell
- canonical/qualcomm rennell firmware
- canonical/qualcomm saipan firmware
- canonical/qualcomm sdm429w
- canonical/qualcomm sd429
- canonical/qualcomm sdm439 firmware
- canonical/qualcomm sd 450 firmware
- canonical/qualcomm snapdragon 450
- canonical/qualcomm sdm632
- canonical/qualcomm sm6150p firmware
- canonical/qualcomm sm6150p
- canonical/qualcomm sm7150 firmware
- canonical/qualcomm sm8150p firmware
- canonical/qualcomm sm8150 fusion
- canonical/qualcomm sm8250
- canonical/qualcomm qsm8250
- canonical/qualcomm sxr2130p firmware
- canonical/qualcomm sxr2130