Arash Tohidi

**Nome do software vulnerável e versões afetadas** Qualcomm Snapdragon (versões afetadas não especificadas) **Descrição** O problema está relacionado a uma gravação fora dos limites no serviço DSP, devido a uma verificação inadequada dos limites do tamanho do buffer de resposta. Isso afeta vários produtos Qualcomm Snapdragon, incluindo Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IoT, Snapdragon Industrial IoT, Snapdragon Mobile e Snapdragon Wearables. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.14.5 **Description** A memory initialization issue was addressed with improved memory handling, allowing an application to potentially execute arbitrary code with system privileges. **Recommendations** For macOS versions prior to 10.14.5, update to macOS Mojave 10.14.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.14.6 **Description** A validation issue was addressed with improved input sanitization, which may allow an application to read restricted memory. **Recommendations** For versions prior to 10.14.6, update to macOS Mojave 10.14.6 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.14.6 **Description** A memory corruption issue was addressed with improved memory handling, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For versions prior to 10.14.6, update to macOS Mojave 10.14.6 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.15.1 **Description** A validation issue was addressed with improved input sanitization, which may allow an application to read restricted memory. **Recommendations** For versions prior to 10.15.1, update to macOS Catalina 10.15.1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple macOS versions prior to 10.14.6 **Description** A validation issue was addressed with improved input sanitization, allowing an application to potentially read restricted memory. **Recommendations** For versions prior to 10.14.6, update to macOS Mojave 10.14.6 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: QEMU (affected versions not specified) Description: The issue is related to an integer overflow in the `rtl8139 do receive` function of the QEMU hardware emulator. This can lead to a buffer overflow. The vulnerability may allow a remote attacker to cause a denial of service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.