medium
6.5
CWE
319
Advisory Published
Updated

CVE-2020-3702

First published: Tue Sep 08 2020(Updated: )

u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8053, IPQ4019, IPQ8064, MSM8909W, MSM8996AU, QCA9531, QCN5502, QCS405, SDX20, SM6150, SM7150

Credit: product-security@qualcomm.com product-security@qualcomm.com

Affected SoftwareAffected VersionHow to fix
ubuntu/linux<4.4.0-223.256
4.4.0-223.256
ubuntu/linux<5.11.0-38.42
5.11.0-38.42
ubuntu/linux<5.12~
5.12~
ubuntu/linux<4.15.0-161.169
4.15.0-161.169
ubuntu/linux<5.4.0-89.100
5.4.0-89.100
ubuntu/linux-hwe<4.15.0-161.169~16.04.1
4.15.0-161.169~16.04.1
ubuntu/linux-hwe<5.12~
5.12~
ubuntu/linux-hwe-5.11<5.11.0-38.42~20.04.1
5.11.0-38.42~20.04.1
ubuntu/linux-hwe-5.11<5.12~
5.12~
ubuntu/linux-hwe-5.4<5.4.0-89.100~18.04.1
5.4.0-89.100~18.04.1
ubuntu/linux-hwe-5.4<5.12~
5.12~
ubuntu/linux-hwe-5.8<5.12~
5.12~
ubuntu/linux-aws<4.4.0-1103.108
4.4.0-1103.108
ubuntu/linux-aws<5.12~
5.12~
ubuntu/linux-aws<4.15.0-1114.121
4.15.0-1114.121
ubuntu/linux-aws<5.4.0-1058.61
5.4.0-1058.61
ubuntu/linux-aws<5.11.0-1020.21
5.11.0-1020.21
ubuntu/linux-aws<4.4.0-1139.153
4.4.0-1139.153
ubuntu/linux-oracle<4.15.0-1082.90~16.04.1
4.15.0-1082.90~16.04.1
ubuntu/linux-oracle<4.15.0-1082.90
4.15.0-1082.90
ubuntu/linux-oracle<5.4.0-1056.60
5.4.0-1056.60
ubuntu/linux-oracle<5.11.0-1020.21
5.11.0-1020.21
ubuntu/linux-oracle<5.12~
5.12~
ubuntu/linux-oracle-5.0<5.12~
5.12~
ubuntu/linux-oracle-5.3<5.12~
5.12~
ubuntu/linux-oracle-5.4<5.4.0-1056.60~18.04.1
5.4.0-1056.60~18.04.1
ubuntu/linux-oracle-5.11<5.11.0-1020.21~20.04.1
5.11.0-1020.21~20.04.1
ubuntu/linux-oracle-5.11<5.12~
5.12~
ubuntu/linux-oem<5.12~
5.12~
ubuntu/linux-oem-5.6<5.12~
5.12~
ubuntu/linux-oem-5.10<5.12~
5.12~
ubuntu/linux-oem-5.10<5.10.0-1050.52
5.10.0-1050.52
ubuntu/linux-oem-5.13<5.12~
5.12~
ubuntu/linux-oem-osp1<5.12~
5.12~
ubuntu/linux-raspi<5.12~
5.12~
ubuntu/linux-raspi<5.4.0-1045.49
5.4.0-1045.49
ubuntu/linux-raspi<5.11.0-1021.22
5.11.0-1021.22
ubuntu/linux-raspi2<5.12~
5.12~
ubuntu/linux-raspi2<4.15.0-1097.103
4.15.0-1097.103
ubuntu/linux-raspi-5.4<5.12~
5.12~
ubuntu/linux-raspi-5.4<5.4.0-1045.49~18.04.1
5.4.0-1045.49~18.04.1
ubuntu/linux-riscv<5.11.0-1021.22
5.11.0-1021.22
ubuntu/linux-riscv<5.12~
5.12~
ubuntu/linux-riscv-5.8<5.12~
5.12~
ubuntu/linux-riscv-5.11<5.11.0-1021.22~20.04.1
5.11.0-1021.22~20.04.1
ubuntu/linux-riscv-5.11<5.12~
5.12~
ubuntu/linux-ibm<5.4.0-1006.7
5.4.0-1006.7
ubuntu/linux-ibm<5.12~
5.12~
ubuntu/linux-snapdragon<4.15.0-1114.123
4.15.0-1114.123
ubuntu/linux-snapdragon<5.12~
5.12~
ubuntu/linux-gcp-5.11<5.11.0-1021.23~20.04.1
5.11.0-1021.23~20.04.1
ubuntu/linux-gcp-5.11<5.12~
5.12~
ubuntu/linux-intel-5.13<5.12~
5.12~
ubuntu/linux-azure<5.11.0-1020.21
5.11.0-1020.21
ubuntu/linux-azure<5.4.0-1062.65
5.4.0-1062.65
ubuntu/linux-azure<4.15.0-1125.138~14.04.1
4.15.0-1125.138~14.04.1
ubuntu/linux-azure<5.12~
5.12~
ubuntu/linux-azure<4.15.0-1125.138~16.04.1
4.15.0-1125.138~16.04.1
ubuntu/linux-azure-5.11<5.11.0-1020.21~20.04.1
5.11.0-1020.21~20.04.1
ubuntu/linux-azure-5.11<5.12~
5.12~
ubuntu/linux-aws-hwe<4.15.0-1113.120~16.04.1
4.15.0-1113.120~16.04.1
ubuntu/linux-aws-hwe<5.12~
5.12~
ubuntu/linux-gcp<4.15.0-1110.124~16.04.1
4.15.0-1110.124~16.04.1
ubuntu/linux-gcp<5.11.0-1021.23
5.11.0-1021.23
ubuntu/linux-gcp<5.4.0-1056.60
5.4.0-1056.60
ubuntu/linux-gcp<5.12~
5.12~
ubuntu/linux-azure-5.13<5.12~
5.12~
ubuntu/linux-aws-5.13<5.12~
5.12~
ubuntu/linux-hwe-5.13<5.12~
5.12~
ubuntu/linux-aws-5.0<5.12~
5.12~
ubuntu/linux-raspi2-5.3<5.12~
5.12~
ubuntu/linux-aws-5.4<5.4.0-1058.61~18.04.3
5.4.0-1058.61~18.04.3
ubuntu/linux-aws-5.4<5.12~
5.12~
ubuntu/linux-bluefield<5.4.0-1020.23
5.4.0-1020.23
ubuntu/linux-bluefield<5.12~
5.12~
ubuntu/linux-azure-5.4<5.4.0-1062.65~18.04.1
5.4.0-1062.65~18.04.1
ubuntu/linux-azure-5.4<5.12~
5.12~
ubuntu/linux-gcp-5.4<5.4.0-1056.60~18.04.1
5.4.0-1056.60~18.04.1
ubuntu/linux-gcp-5.4<5.12~
5.12~
ubuntu/linux-gke-5.4<5.4.0-1054.57~18.04.1
5.4.0-1054.57~18.04.1
ubuntu/linux-gke-5.4<5.12~
5.12~
ubuntu/linux-gkeop<5.4.0-1025.26
5.4.0-1025.26
ubuntu/linux-gkeop<5.12~
5.12~
ubuntu/linux-gkeop-5.4<5.4.0-1025.26~18.04.1
5.4.0-1025.26~18.04.1
ubuntu/linux-gkeop-5.4<5.12~
5.12~
ubuntu/linux-fips<5.12~
5.12~
ubuntu/linux-azure-fde<5.4.0-1062.65
5.4.0-1062.65
ubuntu/linux-azure-fde<5.12~
5.12~
ubuntu/linux-gcp-5.13<5.12~
5.12~
ubuntu/linux-ibm-5.4<5.12~
5.12~
ubuntu/linux-oracle-5.13<5.12~
5.12~
ubuntu/linux-aws-5.11<5.11.0-1020.21~20.04.2
5.11.0-1020.21~20.04.2
ubuntu/linux-aws-5.11<5.12~
5.12~
ubuntu/linux-aws-5.3<5.12~
5.12~
ubuntu/linux-aws-5.8<5.12~
5.12~
ubuntu/linux-azure-4.15<4.15.0-1125.138
4.15.0-1125.138
ubuntu/linux-azure-4.15<5.12~
5.12~
ubuntu/linux-azure-5.3<5.12~
5.12~
ubuntu/linux-azure-edge<5.12~
5.12~
ubuntu/linux-dell300x<4.15.0-1029.34
4.15.0-1029.34
ubuntu/linux-dell300x<5.12~
5.12~
ubuntu/linux-gcp-4.15<4.15.0-1110.124
4.15.0-1110.124
ubuntu/linux-gcp-4.15<5.12~
5.12~
ubuntu/linux-gcp-5.8<5.12~
5.12~
ubuntu/linux-gcp-edge<5.12~
5.12~
ubuntu/linux-gke<5.4.0-1054.57
5.4.0-1054.57
ubuntu/linux-gke<5.12~
5.12~
ubuntu/linux-gke-4.15<5.12~
5.12~
ubuntu/linux-gke-5.0<5.12~
5.12~
ubuntu/linux-gke-5.3<5.12~
5.12~
ubuntu/linux-hwe-edge<5.12~
5.12~
ubuntu/linux-kvm<4.15.0-1101.103
4.15.0-1101.103
ubuntu/linux-kvm<5.4.0-1048.50
5.4.0-1048.50
ubuntu/linux-kvm<5.11.0-1018.19
5.11.0-1018.19
ubuntu/linux-kvm<5.12~
5.12~
ubuntu/linux-kvm<4.4.0-1104.113
4.4.0-1104.113
ubuntu/linux-lts-xenial<4.4.0-223.256~14.04.1
4.4.0-223.256~14.04.1
ubuntu/linux-lts-xenial<5.12~
5.12~
ubuntu/linux-lowlatency<5.12~
5.12~
ubuntu/linux-oem-5.17<5.12~
5.12~
debian/linux
4.19.249-2
4.19.304-1
5.10.209-2
5.10.205-2
6.1.76-1
6.1.85-1
6.6.15-2
6.7.12-1
Qualcomm Apq8053 Firmware
Qualcomm Apq8053
Qualcomm Ipq4019 Firmware
Qualcomm Ipq4019
Qualcomm Ipq8064 Firmware
Qualcomm Ipq8064
Qualcomm Msm8909w Firmware
Qualcomm Msm8909w
Qualcomm Msm8996au Firmware
Qualcomm Msm8996au
Qualcomm Qca9531 Firmware
Qualcomm Qca9531
Qualcomm Qcn5502 Firmware
Qualcomm Qcn5502
Qualcomm Qcs405 Firmware
Qualcomm Qcs405
Qualcomm Sdx20 Firmware
Qualcomm Sdx20
Qualcomm Sm6150 Firmware
Qualcomm Sm6150
Qualcomm Sm7150 Firmware
Qualcomm Sm7150
Debian Debian Linux=10.0
Arista Access Point<=8.8.3-12
Arista Av2
Arista C-75
Arista C75-e
Arista O-90
Arista O90e
Arista W-68
Debian Debian Linux=9.0
All of
Qualcomm Apq8053 Firmware
Qualcomm Apq8053
All of
Qualcomm Ipq4019 Firmware
Qualcomm Ipq4019
All of
Qualcomm Ipq8064 Firmware
Qualcomm Ipq8064
All of
Qualcomm Msm8909w Firmware
Qualcomm Msm8909w
All of
Qualcomm Msm8996au Firmware
Qualcomm Msm8996au
All of
Qualcomm Qca9531 Firmware
Qualcomm Qca9531
All of
Qualcomm Qcn5502 Firmware
Qualcomm Qcn5502
All of
Qualcomm Qcs405 Firmware
Qualcomm Qcs405
All of
Qualcomm Sdx20 Firmware
Qualcomm Sdx20
All of
Qualcomm Sm6150 Firmware
Qualcomm Sm6150
All of
Qualcomm Sm7150 Firmware
Qualcomm Sm7150
All of
Arista Access Point<=8.8.3-12
Any of
Arista Av2
Arista C-75
Arista C75-e
Arista O-90
Arista O90e
Arista W-68

Remedy

https://git.kernel.org/linus/1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Remedy

https://git.kernel.org/linus/56c5485c9e444c2e85e11694b6c44f1338fc20fd

Remedy

https://git.kernel.org/linus/73488cb2fa3bb1ef9f6cf0d757f76958bd4deaca

Remedy

https://git.kernel.org/linus/d2d3e36498dd8e0c83ea99861fac5cf9e8671226

Remedy

https://git.kernel.org/linus/144cd24dbc36650a51f7fe3bf1424a1432f1f480

Remedy

https://git.kernel.org/linus/ca2848022c12789685d3fab3227df02b863f9696

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203