CVE-2018-5915

Name of the Vulnerable Software and Affected Versions Qualcomm Modem IP Stack versions MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX20, SXR1130

Description The issue is related to an exception in the Modem IP stack while processing IPv6 packets. It is associated with the use of the assert() function or a similar operator. Exploitation of this issue could allow a remote attacker to cause a denial of service.

Recommendations For versions MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX20, SXR1130, consider disabling the assert() function or similar operators as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.