CVE-2019-10557

Name of the Vulnerable Software and Affected Versions: Linux kernel versions (affected versions not specified) Qualcomm Snapdragon Auto versions (affected versions not specified) Qualcomm Snapdragon Consumer Electronics Connectivity versions (affected versions not specified) Qualcomm Snapdragon Consumer IOT versions (affected versions not specified) Qualcomm Snapdragon Industrial IOT versions (affected versions not specified) Qualcomm Snapdragon Mobile versions (affected versions not specified) Qualcomm Snapdragon Voice & Music versions (affected versions not specified) APQ8009 (affected versions not specified) APQ8017 (affected versions not specified) APQ8053 (affected versions not specified) APQ8096AU (affected versions not specified) MDM9206 (affected versions not specified) MDM9207C (affected versions not specified) MDM9607 (affected versions not specified) MDM9650 (affected versions not specified) MSM8996AU (affected versions not specified) QCA6174A (affected versions not specified) QCA6574AU (affected versions not specified) QCA9377 (affected versions not specified) QCA9379 (affected versions not specified) QCN7605 (affected versions not specified) QCS605 (affected versions not specified) SDA660 (affected versions not specified) SDA845 (affected versions not specified) SDM630 (affected versions not specified) SDM636 (affected versions not specified) SDM660 (affected versions not specified) SDX20 (affected versions not specified) SDX55 (affected versions not specified) SXR1130 (affected versions not specified)

Description: The issue is related to a lack of buffer length check and out-of-bounds read in the wireless driver of the Linux kernel, which can be exploited by a remote attacker to execute arbitrary code.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.